Report - app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b

Report Overview

Submitted URL
app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b
IP
52.24.204.238
ASN
#16509 AMAZON-02
Submitted
2023-02-01 16:05:17
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.7 kB	49 kB	34.120.237.76
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	515 B	578 B	142.250.74.164
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.33.119.27
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.0 kB	1.9 kB	93.184.220.29
ipapi.co	195030	2017-01-31T10:07:01Z	2023-03-13T05:43:34Z	461 B	1.5 kB	104.26.9.44
ucarecdn.com	76504	2018-06-24T07:35:33Z	2023-03-13T11:06:31Z	480 B	577 B	95.101.10.43
js.userpilot.io	49058	2020-06-04T22:11:11Z	2023-03-12T21:13:39Z	748 B	1.3 kB	104.18.16.155
app.airdeck.co	unknown	2021-03-06T19:26:29Z	2022-12-12T01:53:09Z	12 kB	15 MB	52.10.103.104
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	429 B	17 kB	142.250.74.138
sc.lfeeder.com	17815	2020-09-08T08:51:01Z	2023-03-13T08:21:13Z	381 B	55 kB	54.230.111.125
platform.twitter.com	597	2012-05-21T05:34:05Z	2023-03-13T05:09:29Z	928 B	134 kB	192.229.233.25
syndication.twitter.com	833	2013-09-20T03:46:47Z	2023-03-13T05:26:52Z	457 B	916 B	104.244.42.200
cdn.plyr.io	14223	2015-03-05T07:48:14Z	2023-03-13T09:06:51Z	1.3 kB	5.4 kB	104.27.194.88
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.8 kB	7.7 kB	216.58.211.3
tr-rc.lfeeder.com	unknown	2022-10-20T11:48:08Z	2023-03-13T08:21:13Z	1.3 kB	396 B	54.230.111.36
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-13T05:12:51Z	376 B	4.5 kB	54.230.111.113
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	604 B	593 B	173.194.73.154
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-13T05:21:46Z	338 B	729 B	23.33.119.27
ad-assets-files.s3.us-west-2.amazonaws.com	unknown			440 B	7.5 kB	3.5.81.142
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	1.8 kB	54.230.245.118
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.88.113.219
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	380 B	80 kB	142.250.74.40
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
js.chargebee.com	23733	2019-05-23T14:12:40Z	2023-03-13T08:38:04Z	761 B	88 kB	54.230.111.93
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	776 B	445 B	216.239.32.36
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	371 B	21 kB	142.250.74.110
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-13T05:09:29Z	367 B	2.7 kB	31.13.72.12
cdn.linkedin.oribi.io	unknown	2022-10-19T16:36:39Z	2023-03-13T05:12:57Z	425 B	963 B	54.230.111.78
px.ads.linkedin.com	522	2018-06-15T13:29:56Z	2023-03-13T07:16:10Z	564 B	1.5 kB	13.107.42.14
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-12T19:56:22Z	504 B	1.7 kB	54.230.111.71
vc.hotjar.io	2334	2019-04-16T12:33:25Z	2023-03-13T05:49:45Z	420 B	368 B	54.230.111.8
www.linkedin.com	608	2015-06-18T18:10:03Z	2023-03-13T05:12:57Z	679 B	2.6 kB	13.107.42.14
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
api.app.airdeck.co	unknown	2022-07-26T18:19:05Z	2022-11-02T16:00:01Z	9.0 kB	41 kB	52.10.103.104
snap.licdn.com	1044	2014-10-06T10:43:45Z	2023-03-13T05:12:55Z	380 B	5.1 kB	95.101.11.48
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	514 B	578 B	142.250.74.67
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	496 B	17 kB	142.250.74.67
ad-prod-slides.s3.us-west-2.amazonaws.com	unknown			7.7 kB	476 kB	52.218.234.233
find.userpilot.io	60963	2021-04-13T07:56:40Z	2023-03-12T19:33:34Z	399 B	850 B	104.18.17.155

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-01 16:05:32	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)
2023-02-01 16:05:32	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (28)

	URL	Size	First Seen	Last Seen
	app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b	284 B	2023-03-13	2023-06-29
Pretty URL app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:53 Last Seen2023-06-29 16:56:01 Times Seen2 Hash 9f1699f642cd75157df21fc358aafb2a 125c4deb2122c8163844ebb28dba92538f5df426 dabc24d833e17f54d5c95866e14245b965139be5ec5a92e43659b57b29587a6a Loading...

	app.airdeck.co/main.82636df242c7271b.js	11 MB	2023-03-13	2023-03-13
Pretty URL app.airdeck.co/main.82636df242c7271b.js IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 43815da0789ed28e03a9b42466089531 13199e34aad81721d616faa5603ea1f659227fe9 b5d2fe05bdee05d4c21094543cd14c64cdecbd6fe43f5c6fe74fe67725d7c1a9 Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	13 kB	2023-03-12	2024-03-30
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 95.101.11.48 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:01:01 Last Seen2024-03-30 11:38:49 Times Seen5925 Hash b846c9d158853dd4aa95d3d7407ed8bb 2cf0eb02a22e8bd80d19a50a84593420d777d5db f56ccb2db87aacedd9415232e40f80bff9939703df2f9c3f9ec8a092e545349f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-M448NZH	228 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-M448NZH IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 2223da277618bfd2f6f39a9ea039e5d9 217b2e777a4ceee7c478ef33ef301988ca1dc1b1 b7ee4630754785ce3b9ccd1c1898ca42149d33f8d085a21395c56c39a239b8d8 Loading...

	vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html	2.3 kB	2023-03-13	2023-03-13
Pretty URL vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html IP 54.230.111.71 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:34:34 Last Seen2023-03-13 15:49:54 Times Seen1 Hash 7c63756c777c565ec64b8575d03c8eef 69199d3d871800c0010c3b51e182bdc8dc4bae77 41c984f4d429cde8538bb137b1c7870f12df9d3a19402c269a2579f7d4f3aaa4 Loading...

	api.app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b	155 B	2023-03-13	2023-03-13
Pretty URL api.app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 13a1d53933b1a4e6629fb5d5725f3080 5cf5efa51927342fa50ee238116ce72209eb8bc4 95ec6337de3c91b45fd3f3984ffb7dc7f561cc190859497eae584db0c46a27cd Loading...

	app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b	214 B	2023-03-13	2023-03-13
Pretty URL app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 59e9371a2250e5cef3db44a4e859bd9b 7787352344aa159bce3c4e5726fe5c6ef988e490 d426bc9f94a90146eaef703457ef4b627c8efe4dfde0f267a2612b66bf58bf04 Loading...

	app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b	133 B	2023-03-09	2024-04-15
Pretty URL app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:03:51 Last Seen2024-04-15 07:46:57 Times Seen77 Hash 66e27498af40f4052cb5d5c57421791e 10f8576786d3cd18e983624053287435f0ff50c1 5586e86261f1ac65e4bb7c92f92918f0e3e4cba5f4faa377e411e32b1c3fb6d7 Loading...

	js.userpilot.io/sdk/latest.js	2.5 kB	2023-03-13	2023-03-13
Pretty URL js.userpilot.io/sdk/latest.js IP 104.18.16.155 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 17:14:14 Times Seen1 Hash 9cd5fcc90d85f611e262d6a7da71ff44 941b95346d7a29c6acd5a660250e648745185978 ee8dc199a8349fd2177a4d71f2c8509f42a8533bac123df702e32312192908f7 Loading...

	app.airdeck.co/polyfills.44c3a6a88cb3300a.js	35 kB	2023-03-13	2023-06-29
Pretty URL app.airdeck.co/polyfills.44c3a6a88cb3300a.js IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-06-29 16:56:02 Times Seen3 Hash fb845b62a85699c3e1fafb1c323b5d22 d46d1754c55521a2a6ca126480128e27455d041b 3d7985c09dd1c29a3504e8d349bb6f57d488476d63d4ec6330e14cd8863d5836 Loading...

	app.airdeck.co/assets/js/msal.js	118 kB	2023-03-13	2023-06-29
Pretty URL app.airdeck.co/assets/js/msal.js IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-06-29 16:56:02 Times Seen3 Hash f0a9946e483c7aeebbb0f6bcfdf00d51 bfbc7dc01ec6e0932f5ee699333465f435fe9597 2b801f3228ebc04c7100e77582383bbfeda7aafdd8c6efcdcc2859c5ab46bf00 Loading...

	app.airdeck.co/scripts.b2fcada648249116.js	2.4 MB	2023-03-13	2023-03-13
Pretty URL app.airdeck.co/scripts.b2fcada648249116.js IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash d0d727c802dd8ca712f24c57098b5753 d66bd4e8a4764e9d8515e9fd78f9e36ae27cd63b df05ddda7d9255017b488fef205e37af0c7f9a237cdb7d03c8ab34c57c7a30ae Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	js.userpilot.io/sdk/version/v0/app.js	1.0 MB	2023-03-13	2023-03-13
Pretty URL js.userpilot.io/sdk/version/v0/app.js IP 104.18.16.155 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 17:14:14 Times Seen1 Hash b33ca7f5d0c4f0de5590065f19b941ae 0f89a3d94f113b47dc2daac2f17563872614ae54 1630c31ae286a2af361bf57e95782714a12f971602c811660c7b8934427138a4 Loading...

	app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b	31 kB	2023-03-13	2023-06-29
Pretty URL app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-06-29 16:56:01 Times Seen2 Hash b7360b75c2de160b188b4e950f753edb 12745c22802440740b71f072b7f9e0a62ad79718 f3215db9b0d6bc1c60cf62d460b63225b9ac326c093410022b32806977f53982 Loading...

	www.googletagmanager.com/gtag/js?id=G-1D1YQX68B6&l=dataLayer&cx=c	235 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-1D1YQX68B6&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash f4999b3e709162d299c07e3ceb2c1b4e 7e72bfcf414763ddcd420bc68bd6f2ed4c682bbf daf2b57efc55efac85a53f968123985248288a91dddf3b0db6dec21d95693b18 Loading...

	app.airdeck.co/runtime.dc61fbd286baccdd.js	4.1 kB	2023-03-13	2023-03-13
Pretty URL app.airdeck.co/runtime.dc61fbd286baccdd.js IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash f5a9a1d93543af9ce5bc8e9a47ca743f 8797c9578e1aceed9d5eb50250aa97c8254541b8 1bf29b67f6cbdb0dddb54cd9559f8f52597914309cdc7a6d17f7ac828d46d7e8 Loading...

	sc.lfeeder.com/lftracker_v1_bElvO73qYEpaZMqj.js	32 kB	2023-03-13	2023-03-13
Pretty URL sc.lfeeder.com/lftracker_v1_bElvO73qYEpaZMqj.js IP 54.230.111.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 028a9f76931c0a47cd68b07a8fe597ef 272b783efb39959d860d6b5ad67edce2c3ba016f 858fd6076d92455b1c74fa0239582ac9243f5307b336a9d7f39b36167b6e41ae Loading...

	static.hotjar.com/c/hotjar-2317549.js?sv=7	8.4 kB	2023-03-13	2023-03-13
Pretty URL static.hotjar.com/c/hotjar-2317549.js?sv=7 IP 54.230.111.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash a1cd2fbb25883aa5ae818e10507cf74b 3ee7d4621b1aa96f7457cd37b60a31f95986a3bd aa4b7e7fcc50e35ea8de43b6df17cd5a22fbe797ecf325d0671fd5a597e9b5bc Loading...

	app.airdeck.co/771.054ac18e47d44d4a.js	388 kB	2023-03-13	2023-03-13
Pretty URL app.airdeck.co/771.054ac18e47d44d4a.js IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash c8bff57b9ce67ac582d86d265f33767f 002f1b7a8a059b7fbdd947685ec71a7521fc78f8 360915c429d8bbe4a3963b2dd1d441fc5380613c98350eeaec443aa47faf6366 Loading...

	connect.facebook.net/en_US/all.js?hash=0ec8b67be116e2fc7db52288480ca8b4	315 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/en_US/all.js?hash=0ec8b67be116e2fc7db52288480ca8b4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:14:24 Last Seen2023-03-13 14:20:38 Times Seen1 Hash 5847d38799fe30707ef1e5af9186a211 172f77b6b7b4951be45339e45569e77cb60e8289 0584d7695cccf42e2f025a8ed502708face0721625bb0aeefe7a0b6244e23677 Loading...

	app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b	357 B	2023-03-13	2023-06-29
Pretty URL app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-06-29 16:56:01 Times Seen2 Hash 62961c9405308952f0bbcdd0d70a5221 17983e8c1bd193f6144fc68b05ac1655af584459 e8c13e4924fc19c79010c5bb3b6806f430e2736bab3dff6a61470215106fa4d7 Loading...

	app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b	2.4 kB	2023-03-13	2023-03-13
Pretty URL app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b IP 52.10.103.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash fc23981b32a9914a17f74e8a43c82622 2ac33135914b0b1645760c4666c7415ff31be9b7 af020e4c727d60884e96e5c72c04d68d165c440d2396d081a4c1f73d412469f7 Loading...

	js.chargebee.com/v2/chargebee.js	258 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/chargebee.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 39ea6b98c0a5ec200c2c1175e441d9b6 4d51d818a8a513cd70f88f745765e684bc943aba c276056b1e5a2f47c9b8b21c935830719a1fdcaa98d8a3d2ee04d595215525a0 Loading...

	js.chargebee.com/v2/134-697e2b9b5522126d7fbc.js	12 kB	2023-03-13	2023-03-13
Pretty URL js.chargebee.com/v2/134-697e2b9b5522126d7fbc.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 872342286bbf16863c2464ec8be9734c 369cbca83636cb29d9296464148230a2f2aedb2f a94673decf9bc99df92a97df6044f34ac62d164595030bbfda255d843ec9ecfc Loading...

	platform.twitter.com/widgets.js	93 kB	2023-03-13	2024-04-18
Pretty URL platform.twitter.com/widgets.js IP 192.229.233.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:53:34 Last Seen2024-04-18 11:27:49 Times Seen3883 Hash 9e99725b7a4cd730a934afba2a438bb5 cca18cd298b243e672b37ba6e6927bec865dd742 392c9fa9cd1273a2a89d1a83a69cd1f63f21d1d55e7be21e1d8f51f25145668b Loading...

	connect.facebook.net/en_US/all.js	3.1 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/en_US/all.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:17:54 Last Seen2023-03-13 14:17:54 Times Seen1 Hash 61370456b53d19f0689c68e851cbbfb2 caaf53c02485f8223de4e5e89d888362b622152c 6b518c5eaced4eda11e51aa351bb03e30887576af5cd4486f5899c72e96f18ff Loading...

	platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fapp.airdeck.co	327 kB	2023-03-13	2024-04-18
Pretty URL platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fapp.airdeck.co IP 192.229.233.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:53:42 Last Seen2024-04-18 11:27:49 Times Seen2170 Hash ddda7cfc08478ea11fab363ee004f38e e56b886f428cb955f3c594b3c82213cd422b82fd 74df0c960477a1e829b4e135295119fc6d3603d2fbdae3f87bc1854ec5ef0cc4 Loading...

HTTP Transactions (115)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 62de35a6c8e4efd7633fc5236b5b086f 6a92912a86dfcd0330d040cef06bef36889c76ab ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC" Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9655 Expires: Wed, 01 Feb 2023 18:45:58 GMT Date: Wed, 01 Feb 2023 16:05:03 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d2e72d45afe3d391c204b5391599607c 149d68b9d00a720b6f380fa2324779dca9dbe26d f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6464 Expires: Wed, 01 Feb 2023 17:52:47 GMT Date: Wed, 01 Feb 2023 16:05:03 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 01 Feb 2023 15:43:25 GMT content-type: application/json age: 1298 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b	52.10.103.104	302 Moved Temporarily	110 B
URL HTTP/1.1 app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 110 B (110 bytes) Hash f366e0e18b589cb6f243bf43ce75e83c 0f95dda86ab28586f00bc878b42ecd09e579a890 075f0fd7eeb4bfec31816d61be72b064d4899853b224bd5f380041d7dd0b1d19 HTTP Headers `GET /ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Moved Temporarily Server: awselb/2.0 Date: Wed, 01 Feb 2023 16:05:03 GMT Content-Type: text/html Content-Length: 110 Connection: keep-alive Location: https://app.airdeck.co:443/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 09ee4b0fe6cf4ca5ed31b24452338d00 7e62b6e20f0d4737f4a8d94f9818a0883027839e 56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3972 Expires: Wed, 01 Feb 2023 17:11:15 GMT Date: Wed, 01 Feb 2023 16:05:03 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 8AK79+vRAAtXvmiVRWgqHvt5EPGfxvhLx2+oSSQwt4rJ8cGgvdprUTuoI4Pw6dHcszqLmOGhLhU= x-amz-request-id: 7Q43EQMFG9MZAWV2 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 01 Feb 2023 15:22:43 GMT age: 2540 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 16:05:03 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 01 Feb 2023 15:41:42 GMT age: 1402 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A" Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5088 Expires: Wed, 01 Feb 2023 17:29:52 GMT Date: Wed, 01 Feb 2023 16:05:04 GMT Connection: keep-alive`

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 3cafa005e691ea6eab7dd338f2099eff 3b9b3409cc143bdd82720ec62625bbe26fe426bc 02eb75ba30c4b04e4a1aeadc8c4c849bc8491df9cb8da531659b6ba1df822f53 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Wed, 01 Feb 2023 16:05:04 GMT Etag: "63d97ec4-1d7" Server: ECS (dcb/7F16) X-Cache: Miss from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Fp5dzBfE2Z5V-9tZRkI654ObwgXewSst6USwHLAIVpDwmwV5nxzxag==`

	app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b	52.10.103.104	301 Moved Permanently	134 B
URL HTTP/2 app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 134 B (134 bytes) Hash 4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a HTTP Headers GET /ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 `HTTP/2 301 Moved Permanently server: awselb/2.0 date: Wed, 01 Feb 2023 16:05:04 GMT content-type: text/html content-length: 134 location: https://api.app.airdeck.co:443/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b X-Firefox-Spdy: h2`

	push.services.mozilla.com/	52.88.113.219	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.88.113.219:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 8vDihjg5yOJPDwm6TFfLfQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: M+cAa/JFkk0R5t0K3AHO02vr4lo=`

	api.app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b	52.10.103.104	200 OK	2.1 kB
URL HTTP/2 api.app.airdeck.co/ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text Size 2.1 kB (2132 bytes) Hash 61ef737151f5b04d873fa01e58474e97 00c76cb105f505e8001b9778459abcb6dc25eb3e 8af449ffcb01e429141c24ecd6566ee7aaf8dbd705f423db3f70c5ecb5f0e43c HTTP Headers GET /ad/sh/601ac664274f?qfd=53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8&ak=decks-2291519g6gl94r0n6b HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:04 GMT content-type: text/html; charset=utf-8 content-length: 2132 set-cookie: AWSALB=jhVWbibkHleSzMLKO2AMjhbAgtXUcO2ulSc4GJkyIWm4qX2tNqUFJpNlZeFuG85+FNWtDQGyBW7AENXv7ADuN7dzzSofnuzp+9YO//QEr5FU63V/mIRdTqVAjfam; Expires=Wed, 08 Feb 2023 16:05:04 GMT; Path=/ AWSALBCORS=jhVWbibkHleSzMLKO2AMjhbAgtXUcO2ulSc4GJkyIWm4qX2tNqUFJpNlZeFuG85+FNWtDQGyBW7AENXv7ADuN7dzzSofnuzp+9YO//QEr5FU63V/mIRdTqVAjfam; Expires=Wed, 08 Feb 2023 16:05:04 GMT; Path=/; SameSite=None; Secure _ad_c_sess=6fdJYDkNp91Ynq6nChBZmlmpFPoCpKpzSlteoUHiVUbBcobs4OzasvGccMnEP031BTfLtmk%2Bv68EKxFuHwDrjQ%3D%3D; Max-Age=300; Path=/; Expires=Wed, 01 Feb 2023 16:10:04 GMT; HttpOnly; Secure connect.sid=s%3AoDdyvN3Wejb06otBloVFf2DEzr_Mh_07.8Bv5LncqVWkvjvMB63t9WlTTTvqh6%2BFN0x1abtaJIyg; Path=/; HttpOnly; Secure access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS x-ratelimit-limit: 100 x-ratelimit-remaining: 99 x-ratelimit-reset: 1675267506 access-control-allow-credentials: true access-control-allow-headers: X-Requested-With,content-type strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff content-security-policy: default-src 'self'; script-src 'self' 'nonce-5c1293582870a147c4f115dc81a2a34c69bf95eb2e5c82ab3f79ce17d227a7aa' x-frame-options: SAMEORIGIN cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0 etag: W/"854-AMdssQX1BegAG5d4RZq8ttwl6z4" X-Firefox-Spdy: h2

	app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b	52.10.103.104	200 OK	43 kB
URL HTTP/2 app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (30276) Size 43 kB (43413 bytes) Hash 0d66d399ee7620e2591460cdc8941b51 ced07ee0cd127a9b9ea86ccd0ecaa843561cc154 b063a7fd51175bc40a40a5ac0e7731e935b60b32c256b98721c023b11900d73e HTTP Headers GET /view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://api.app.airdeck.co/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:04 GMT content-type: text/html content-length: 43413 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:15 GMT etag: "63da21af-a995" accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash de49044c9365e16fec3a6d361cb94728 2b7b69c16de6fda1ae5206f92fe781ee07bd182a 6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2751084b42dd111d0a7f28241a77201b 680a9ac2f4cf451c9a8449c4df3587595ed9cc4c 1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-M448NZH	142.250.74.40	200 OK	79 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M448NZH IP 142.250.74.40:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (12497) Size 79 kB (79412 bytes) Hash 8f8d0467193ecea2563c56c0583b82e6 b65638a6560eefb648be63c6f6bc261f5447f16d 7f850030f7589bd6e44f1717451e11b9ba464280b9e40ee9b7d0a45cca29b6b3 HTTP Headers `GET /gtm.js?id=GTM-M448NZH HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 01 Feb 2023 16:05:05 GMT expires: Wed, 01 Feb 2023 16:05:05 GMT cache-control: private, max-age=900 last-modified: Wed, 01 Feb 2023 15:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 79412 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash de49044c9365e16fec3a6d361cb94728 2b7b69c16de6fda1ae5206f92fe781ee07bd182a 6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c004ef398fc2138876eac9e202e6e7c9 9b695108fe043113ee8dc3369be58234f1a73323 ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 789b41f1f8027d4275a66ac9cb2f124d c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79 e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap	142.250.74.138	200 OK	17 kB
URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap IP 142.250.74.138:0 ASN #15169 GOOGLE File type data Size 17 kB (16566 bytes) Hash 5b5a915e4b527c83da77fea693ceaca6 50e16d3e9771763f5201966b960d70765b397097 db5b45b3ee3e00913a3d99f89b80134624e78e6e0bd37d5e7969587c82033875 HTTP Headers `GET /css2?family=Roboto:wght@100;300;400;500;700;900&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 01 Feb 2023 16:05:05 GMT date: Wed, 01 Feb 2023 16:05:05 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 42d54c8c12a2f90c448a11bf42800e86 bb66d35435411c825bfcd0a091f33b7d1708191e 3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:05 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	app.airdeck.co/assets/js/msal.js	52.10.103.104	200 OK	118 kB
URL HTTP/2 app.airdeck.co/assets/js/msal.js IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with CRLF line terminators Size 118 kB (118273 bytes) Hash f0a9946e483c7aeebbb0f6bcfdf00d51 bfbc7dc01ec6e0932f5ee699333465f435fe9597 2b801f3228ebc04c7100e77582383bbfeda7aafdd8c6efcdcc2859c5ab46bf00 HTTP Headers `GET /assets/js/msal.js HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:05 GMT content-type: application/javascript content-length: 118273 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:14 GMT etag: "63da21ae-1ce01" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/runtime.dc61fbd286baccdd.js	52.10.103.104	200 OK	4.1 kB
URL HTTP/2 app.airdeck.co/runtime.dc61fbd286baccdd.js IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (4110), with no line terminators Size 4.1 kB (4110 bytes) Hash f5a9a1d93543af9ce5bc8e9a47ca743f 8797c9578e1aceed9d5eb50250aa97c8254541b8 1bf29b67f6cbdb0dddb54cd9559f8f52597914309cdc7a6d17f7ac828d46d7e8 HTTP Headers `GET /runtime.dc61fbd286baccdd.js HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:05 GMT content-type: application/javascript content-length: 4110 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-100e" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/webfonts/fa-solid-900.woff2	52.10.103.104	200 OK	43 kB
URL HTTP/2 app.airdeck.co/webfonts/fa-solid-900.woff2 IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (30276) Size 43 kB (43413 bytes) Hash 0d66d399ee7620e2591460cdc8941b51 ced07ee0cd127a9b9ea86ccd0ecaa843561cc154 b063a7fd51175bc40a40a5ac0e7731e935b60b32c256b98721c023b11900d73e HTTP Headers GET /webfonts/fa-solid-900.woff2 HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:05 GMT content-type: text/html content-length: 43413 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:15 GMT etag: "63da21af-a995" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/polyfills.44c3a6a88cb3300a.js	52.10.103.104	200 OK	35 kB
URL HTTP/2 app.airdeck.co/polyfills.44c3a6a88cb3300a.js IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (35216), with no line terminators Size 35 kB (35216 bytes) Hash fb845b62a85699c3e1fafb1c323b5d22 d46d1754c55521a2a6ca126480128e27455d041b 3d7985c09dd1c29a3504e8d349bb6f57d488476d63d4ec6330e14cd8863d5836 HTTP Headers `GET /polyfills.44c3a6a88cb3300a.js HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:05 GMT content-type: application/javascript content-length: 35216 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-8990" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/assets/css/fontawesome-all.min.css	52.10.103.104	200 OK	35 kB
URL HTTP/2 app.airdeck.co/assets/css/fontawesome-all.min.css IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (34574) Size 35 kB (34752 bytes) Hash 48f9d9cafc4ce9c1cad6c5aa423928af 28420c70f259b33b4fc926abbc9821a6d09420c9 b0d54099e3643c0afaa8c9e37499d3f978407086ccd68d9a62a17c40641db0c6 HTTP Headers `GET /assets/css/fontawesome-all.min.css HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:05 GMT content-type: text/css content-length: 34752 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:14 GMT etag: "63da21ae-87c0" accept-ranges: bytes X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7824 Expires: Wed, 01 Feb 2023 18:15:29 GMT Date: Wed, 01 Feb 2023 16:05:05 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7824 Expires: Wed, 01 Feb 2023 18:15:29 GMT Date: Wed, 01 Feb 2023 16:05:05 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7824 Expires: Wed, 01 Feb 2023 18:15:29 GMT Date: Wed, 01 Feb 2023 16:05:05 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (14041 bytes) Hash 78fe9a77211d6f9a462f625af0c6f9bc ac0b58423d7578e7a1b60a62220c0a57924dda82 e047466c3ae0a55509f4ace49d0476f94271b5a25e71caa3b06ec468a238b652 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 14041 x-amzn-requestid: 2be6655d-3b0e-4e65-b44b-11682610b640 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foJaRGFpIAMFbMQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9890e-5554d18d5db235913afa77a2;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: MeSOuCSjsjhK6FOS67rw6oF4rS08twjOACGbXJrNPH6vwZb8lZh9lw== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 21:51:18 GMT etag: "ac0b58423d7578e7a1b60a62220c0a57924dda82" content-type: image/jpeg age: 65627 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg	34.120.237.76	200 OK	5.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.7 kB (5736 bytes) Hash 2998f7f50ac0eec931c348e8a0fb0c60 f5e411cda74cb7fb4a662f4787e9543b9749c8b5 0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5736 x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ffEtEGk_oAMFYPA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ== via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 21:57:42 GMT age: 65243 etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	js.chargebee.com/v2/chargebee.js	54.230.111.93	200 OK	87 kB
URL HTTP/2 js.chargebee.com/v2/chargebee.js IP 54.230.111.93:0 ASN #16509 AMAZON-02 File type data Size 87 kB (86627 bytes) Hash 37310fd57ce221d02f5a4fc5991c8ad2 5c2c243c4842990ddf2f4b19a47b10bf3d7e7211 9a028ccf68f12b1eae12057f7f9e3ffa23f6273a2f7f91da1f3925fe2f01c595 HTTP Headers `GET /v2/chargebee.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/x-javascript last-modified: Wed, 01 Feb 2023 07:59:41 GMT x-amz-version-id: YeqLcq8AfkLRFgf2qcbN9Q3IZARcweIE server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Wed, 01 Feb 2023 16:03:42 GMT cache-control: max-age=300,public etag: W/"39ea6b98c0a5ec200c2c1175e441d9b6" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: tP6yLERlIk6or1iXkZFb5Iyp7WKQLydib226Nlk-DOiRE_fPSHgRVw== age: 83 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg	34.120.237.76	200 OK	8.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.7 kB (8735 bytes) Hash 23db22ce2120fbb0ae6109e1a046062d 2068c8d9a5bc30a17be658e198e26c64a80703cf f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8735 x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foJaWFP_IAMF9wA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: hjIm9dNf6UE9rpIlKWeLwWuF7Pm6yJeAZgbwchvJcuDy-zkXEr502w== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 21:51:18 GMT age: 65627 etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8597 bytes) Hash 27e95b7912edc909d6b031e36fe83534 eb27fae0bb17dbe0929a620002195233ef50c1d0 b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8597 x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fcRaNEW4IAMFatA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0 x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 07:53:10 GMT age: 29515 etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg	34.120.237.76	200 OK	6.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.8 kB (6819 bytes) Hash ec7e808a5e82552c46c3417a5b32b836 f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6819 x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foJaRHGnoAMF0Ow= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 4MpUHqMYJoNA7QuRuQwbJIodNkhizq6EL5SPbIoSKFQjtoAKQgLuEg== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 21:51:25 GMT age: 65620 etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	tr-rc.lfeeder.com/?sid=bElvO73qYEpaZMqj&data=eyJnYVRyYWNraW5nSWRzIjpbXSwiZ2FNZWFzdXJlbWVudElkcyI6WyJHLTFEMVlRWDY4QjYiXSwiZ2FDbGllbnRJZHMiOlsiMTQzMTM0ODk5NS4xNjc1MjY3NTI4Il0sImNvbnRleHQiOnsibGlicmFyeSI6eyJuYW1lIjoibGZ0cmFja2VyIiwidmVyc2lvbiI6IjIuNTkuMCJ9LCJwYWdlVXJsIjoiaHR0cHM6Ly9hcHAuYWlyZGVjay5jby92aWV3LWRlY2tzLzUzNjE2Yzc0NjU2NDVmNWZjOTAxYzMyNzQzYTczMzhjOTlmYjM0YzMzM2EzNmU4MmRjZGVjMjU4ZjJmOTgzZTgvZGVja3MtMjI5MTUxOWc2Z2w5NHIwbjZiIiwicGFnZVRpdGxlIjoiQWlyRGVjayIsInJlZmVycmVyIjoiaHR0cHM6Ly9hcGkuYXBwLmFpcmRlY2suY28vIn0sImV2ZW50IjoidHJhY2tpbmctZXZlbnQiLCJjbGllbnRFdmVudElkIjoiZmFhMjkyYjZhN2I2NzdkNyIsInNjcmlwdElkIjoiYkVsdk83M3FZRXBhWk1xaiIsImNvb2tpZXNFbmFibGVkIjp0cnVlLCJjb25zZW50TGV2ZWwiOiJub25lIiwiYW5vbnltaXplSXAiOmZhbHNlLCJsZkNsaWVudElkIjoiTEYxLjEuOGUwOGUxMDc3MmI0N2Q5Yi4xNjc1MjY3NTI4MTA3IiwiZm9yZWlnbkNvb2tpZXMiOltdLCJwcm9wZXJ0aWVzIjp7fSwiYXV0b1RyYWNraW5nRW5hYmxlZCI6dHJ1ZSwiYXV0b1RyYWNraW5nTW9kZSI6Im9uX3NjcmlwdF9sb2FkIn0=	54.230.111.36	200 OK	43 B
URL HTTP/2 tr-rc.lfeeder.com/?sid=bElvO73qYEpaZMqj&data=eyJnYVRyYWNraW5nSWRzIjpbXSwiZ2FNZWFzdXJlbWVudElkcyI6WyJHLTFEMVlRWDY4QjYiXSwiZ2FDbGllbnRJZHMiOlsiMTQzMTM0ODk5NS4xNjc1MjY3NTI4Il0sImNvbnRleHQiOnsibGlicmFyeSI6eyJuYW1lIjoibGZ0cmFja2VyIiwidmVyc2lvbiI6IjIuNTkuMCJ9LCJwYWdlVXJsIjoiaHR0cHM6Ly9hcHAuYWlyZGVjay5jby92aWV3LWRlY2tzLzUzNjE2Yzc0NjU2NDVmNWZjOTAxYzMyNzQzYTczMzhjOTlmYjM0YzMzM2EzNmU4MmRjZGVjMjU4ZjJmOTgzZTgvZGVja3MtMjI5MTUxOWc2Z2w5NHIwbjZiIiwicGFnZVRpdGxlIjoiQWlyRGVjayIsInJlZmVycmVyIjoiaHR0cHM6Ly9hcGkuYXBwLmFpcmRlY2suY28vIn0sImV2ZW50IjoidHJhY2tpbmctZXZlbnQiLCJjbGllbnRFdmVudElkIjoiZmFhMjkyYjZhN2I2NzdkNyIsInNjcmlwdElkIjoiYkVsdk83M3FZRXBhWk1xaiIsImNvb2tpZXNFbmFibGVkIjp0cnVlLCJjb25zZW50TGV2ZWwiOiJub25lIiwiYW5vbnltaXplSXAiOmZhbHNlLCJsZkNsaWVudElkIjoiTEYxLjEuOGUwOGUxMDc3MmI0N2Q5Yi4xNjc1MjY3NTI4MTA3IiwiZm9yZWlnbkNvb2tpZXMiOltdLCJwcm9wZXJ0aWVzIjp7fSwiYXV0b1RyYWNraW5nRW5hYmxlZCI6dHJ1ZSwiYXV0b1RyYWNraW5nTW9kZSI6Im9uX3NjcmlwdF9sb2FkIn0= IP 54.230.111.36:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b HTTP Headers GET /?sid=bElvO73qYEpaZMqj&data=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 HTTP/1.1 Host: tr-rc.lfeeder.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: image/gif content-length: 43 server: CloudFront date: Wed, 01 Feb 2023 16:05:06 GMT x-cache: LambdaGeneratedResponse from cloudfront via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: jJGA1yjiZflaNsNx6XIK7HWy4aEcDFyW9CPU7EDQ5ZVae-dD-DHVRw== X-Firefox-Spdy: h2`

	region1.google-analytics.com/g/collect?v=2&tid=G-1D1YQX68B6&gtm=2oe1u0&_p=1102216859&cid=1431348995.1675267528&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675267527&sct=1&seg=0&dl=https%3A%2F%2Fapp.airdeck.co%2Fview-decks%2F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%2Fdecks-2291519g6gl94r0n6b&dr=https%3A%2F%2Fapi.app.airdeck.co%2F&dt=AirDeck&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-1D1YQX68B6&gtm=2oe1u0&_p=1102216859&cid=1431348995.1675267528&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675267527&sct=1&seg=0&dl=https%3A%2F%2Fapp.airdeck.co%2Fview-decks%2F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%2Fdecks-2291519g6gl94r0n6b&dr=https%3A%2F%2Fapi.app.airdeck.co%2F&dt=AirDeck&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-1D1YQX68B6&gtm=2oe1u0&_p=1102216859&cid=1431348995.1675267528&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675267527&sct=1&seg=0&dl=https%3A%2F%2Fapp.airdeck.co%2Fview-decks%2F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%2Fdecks-2291519g6gl94r0n6b&dr=https%3A%2F%2Fapi.app.airdeck.co%2F&dt=AirDeck&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://app.airdeck.co date: Wed, 01 Feb 2023 16:05:06 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	sc.lfeeder.com/lftracker_v1_bElvO73qYEpaZMqj.js	54.230.111.125	200 OK	54 kB
URL HTTP/2 sc.lfeeder.com/lftracker_v1_bElvO73qYEpaZMqj.js IP 54.230.111.125:0 ASN #16509 AMAZON-02 File type data Size 54 kB (54362 bytes) Hash 262869e185a9dde5d96699c15748a195 f9d8d33e1ca1056ab99ae6a82b5e43bf0940edae 8952f68dfb8a1810357299ba04071705f09699cb2b89c69171a4ea08984e1f04 HTTP Headers `GET /lftracker_v1_bElvO73qYEpaZMqj.js HTTP/1.1 Host: sc.lfeeder.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript last-modified: Tue, 31 Jan 2023 07:12:03 GMT x-amz-version-id: 8upg0KqKH1qWzGOMlEFUiHi.ZnfBFPtI server: AmazonS3 content-encoding: gzip date: Wed, 01 Feb 2023 16:05:06 GMT cache-control: max-age=3600 etag: W/"028a9f76931c0a47cd68b07a8fe597ef" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: otESQwSr--i99dn8YgqkTVJlBY7JnIQDk6-aOrhvhKobv9caTMqZ8Q== X-Firefox-Spdy: h2

	app.airdeck.co/assets/webfonts/fa-solid-900.woff2	52.10.103.104	200 OK	39 kB
URL HTTP/2 app.airdeck.co/assets/webfonts/fa-solid-900.woff2 IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 38784, version 1.0\012- data Size 39 kB (38784 bytes) Hash f9b85c9463af7103b9b24bbbf09a06ed d28d7222bcbeb8ea701a771e85f7efe006e62fb1 62554277d07b20c6bfae7c6267b3198b4846f604a37d4085bf9f54c392210b56 HTTP Headers GET /assets/webfonts/fa-solid-900.woff2 HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://app.airdeck.co/assets/css/fontawesome-all.min.css Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.1.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:06 GMT content-type: font/woff2 content-length: 38784 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:14 GMT etag: "63da21ae-9780" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/assets/css/grid.css	52.10.103.104	200 OK	49 kB
URL HTTP/2 app.airdeck.co/assets/css/grid.css IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with CRLF line terminators Size 49 kB (49401 bytes) Hash 5da23d334f5fce3d89c96b343c34e138 2ff8b27332a707d654ab5d09d31c33b5e8efb80b 11782d0afe2ab57366d92ed2c419fa1293d68182e4b0856b243b594d391b8b89 HTTP Headers GET /assets/css/grid.css HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.1.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:06 GMT content-type: text/css content-length: 49401 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:14 GMT etag: "63da21ae-c0f9" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/scripts.b2fcada648249116.js	52.10.103.104	200 OK	2.4 MB
URL HTTP/2 app.airdeck.co/scripts.b2fcada648249116.js IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 2.4 MB (2361711 bytes) Hash d0d727c802dd8ca712f24c57098b5753 d66bd4e8a4764e9d8515e9fd78f9e36ae27cd63b df05ddda7d9255017b488fef205e37af0c7f9a237cdb7d03c8ab34c57c7a30ae HTTP Headers `GET /scripts.b2fcada648249116.js HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:05 GMT content-type: application/javascript content-length: 2361711 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-24096f" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/styles.196a385f18bed52e.css	52.10.103.104	200 OK	595 kB
URL HTTP/2 app.airdeck.co/styles.196a385f18bed52e.css IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 595 kB (594591 bytes) Hash 5d1c91d0cba1d499ba828a554574b3cc 3aef1976a6f29dd97721c9d4ce3a7fbc05288fe1 ef8a79d0cf86758e0d10d54c073dc140ec3538983e3d358b4f5617ab0513e73c HTTP Headers GET /styles.196a385f18bed52e.css HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.1.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:06 GMT content-type: text/css content-length: 594591 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-9129f" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/webfonts/fa-solid-900.ttf	52.10.103.104	200 OK	43 kB
URL HTTP/2 app.airdeck.co/webfonts/fa-solid-900.ttf IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (30276) Size 43 kB (43413 bytes) Hash 0d66d399ee7620e2591460cdc8941b51 ced07ee0cd127a9b9ea86ccd0ecaa843561cc154 b063a7fd51175bc40a40a5ac0e7731e935b60b32c256b98721c023b11900d73e HTTP Headers GET /webfonts/fa-solid-900.ttf HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.1.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:06 GMT content-type: text/html content-length: 43413 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:15 GMT etag: "63da21af-a995" accept-ranges: bytes X-Firefox-Spdy: h2`

	app.airdeck.co/main.82636df242c7271b.js	52.10.103.104	200 OK	11 MB
URL HTTP/2 app.airdeck.co/main.82636df242c7271b.js IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 11 MB (10654803 bytes) Hash 43815da0789ed28e03a9b42466089531 13199e34aad81721d616faa5603ea1f659227fe9 b5d2fe05bdee05d4c21094543cd14c64cdecbd6fe43f5c6fe74fe67725d7c1a9 HTTP Headers `GET /main.82636df242c7271b.js HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:05 GMT content-type: application/javascript content-length: 10654803 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-a29453" accept-ranges: bytes X-Firefox-Spdy: h2`

	snap.licdn.com/li.lms-analytics/insight.min.js	95.101.11.48	200 OK	4.8 kB
URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js IP 95.101.11.48:0 ASN #20940 Akamai International B.V. File type ASCII text, with very long lines (13351) Size 4.8 kB (4777 bytes) Hash 74f72658f6efd10c4c286ab07cd5e452 9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39 6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c HTTP Headers `GET /li.lms-analytics/insight.min.js HTTP/1.1 Host: snap.licdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK last-modified: Tue, 10 Jan 2023 17:22:56 GMT accept-ranges: bytes content-type: application/x-javascript;charset=utf-8 vary: Accept-Encoding content-encoding: gzip cache-control: max-age=35761 date: Wed, 01 Feb 2023 16:05:09 GMT content-length: 4777 x-content-type-options: nosniff x-cdn: AKAM X-Firefox-Spdy: h2`

	platform.twitter.com/widgets.js	192.229.233.25	200 OK	28 kB
URL HTTP/1.1 platform.twitter.com/widgets.js IP 192.229.233.25:0 ASN #15133 EDGECAST File type Unicode text, UTF-8 text, with very long lines (38752) Size 28 kB (27630 bytes) Hash 8aa708f5eebf10bd82e942dabf1623a5 326a6d469222302a80ecf29039e7837d8870ee47 fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368 HTTP Headers `GET /widgets.js HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Access-Control-Max-Age: 3000 Age: 673 Cache-Control: public, max-age=1800 Content-Type: application/javascript; charset=utf-8 Date: Wed, 01 Feb 2023 16:05:09 GMT Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip" Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F719) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ Vary: Accept-Encoding x-amzn-internal-status: 304 X-Cache: HIT x-tw-cdn: VZ Content-Length: 27630

	www.google-analytics.com/analytics.js	142.250.74.110	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.110:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Wed, 01 Feb 2023 15:46:59 GMT expires: Wed, 01 Feb 2023 17:46:59 GMT cache-control: public, max-age=7200 age: 1090 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 717cf52cfdc9e790ae36f7a4e1d19d16 03b71415f75565d67d059f1046fa363be72245e5 f76f4406c8796751e4b51ecff884ff3b3ea2bff4c60b6a8941d68b31951b4541 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2834 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:09 GMT Last-Modified: Wed, 01 Feb 2023 15:17:55 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471`

	connect.facebook.net/en_US/all.js	31.13.72.12	200 OK	1.7 kB
URL HTTP/2 connect.facebook.net/en_US/all.js IP 31.13.72.12:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (1957) Size 1.7 kB (1686 bytes) Hash 3a4b02939219734b6ef4247eef93d8bc 1a27623994e0f3815ba9a68b984c79309dc74d3e da76242444537fd413c5015e2873ad9f555dffd63dae9dd7c7218c93e6ce7790 HTTP Headers `GET /en_US/all.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip access-control-expose-headers: X-FB-Content-MD5 x-fb-content-md5: 61370456b53d19f0689c68e851cbbfb2 etag: "e033bf076cbdafe0aec845e044088195" content-type: application/x-javascript; charset=utf-8 timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin expires: Wed, 01 Feb 2023 16:18:20 GMT cache-control: public,max-age=1200,stale-while-revalidate=3600 document-policy: force-load-at-top cross-origin-opener-policy: same-origin-allow-popups x-content-type-options: nosniff x-fb-rlafr: 0 x-frame-options: DENY origin-agent-cluster: ?0 strict-transport-security: max-age=31536000; preload; includeSubDomains content-md5: OksCk5IZc0tu9CR+75PYvA== x-fb-debug: I/aNzPGmjEgMEmqBjV2W4tXbZ/84Mn4L+E7EEmhUl9UcGxh2pRJn2yhITM3LrUYuVPQRHPestIIAv+koUBXL7g== content-length: 1686 x-fb-trip-id: 1904183273 date: Wed, 01 Feb 2023 16:05:09 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	static.hotjar.com/c/hotjar-2317549.js?sv=7	54.230.111.113	200 OK	3.9 kB
URL HTTP/2 static.hotjar.com/c/hotjar-2317549.js?sv=7 IP 54.230.111.113:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (7535) Size 3.9 kB (3906 bytes) Hash ca585772b022d5738586e14ebe8dc5dd be6b6fc978c529f8532dc9c3ec4c889492e5a5a4 8a591930522b99fea2946f2c17a5e06c4cbac38adc5ee39e32b2a0d0f7f25ed2 HTTP Headers `GET /c/hotjar-2317549.js?sv=7 HTTP/1.1 Host: static.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * content-encoding: br cross-origin-resource-policy: cross-origin strict-transport-security: max-age=2592000; includeSubDomains x-cache-hit: 1 x-content-type-options: nosniff date: Wed, 01 Feb 2023 16:05:09 GMT cache-control: max-age=60 etag: W/a1cd2fbb25883aa5ae818e10507cf74b vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: xcUrMYHsT32a3MWFaZfXtn3xfjCEbzq0u21sVzl47xvLmFPPG-tJHw== X-Firefox-Spdy: h2

	app.airdeck.co/favicon.ico	52.10.103.104	200 OK	15 kB
URL HTTP/2 app.airdeck.co/favicon.ico IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size 15 kB (15086 bytes) Hash 0ffa219c2ee85bca11d0ce23b923fabf 8037819f02c312d31b8458572911bf2be5c3fe22 9a0a91583819beff76787371aa588842ee56cb5530ff9d087df91ba3ec354eb3 HTTP Headers GET /favicon.ico HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.1.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:09 GMT content-type: image/x-icon content-length: 15086 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:14 GMT etag: "63da21ae-3aee" accept-ranges: bytes X-Firefox-Spdy: h2`

	platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fapp.airdeck.co	192.229.233.25	200 OK	105 kB
URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fapp.airdeck.co IP 192.229.233.25:0 ASN #15133 EDGECAST File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166) Size 105 kB (105435 bytes) Hash 58f06e7d628e7e207cad8e48c9cc76be 9042f057d52be00c9535ce93b0ce4c03707e0c41 ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789 HTTP Headers GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fapp.airdeck.co HTTP/1.1 Host: platform.twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Encoding: gzip Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Age: 670914 Cache-Control: public, max-age=315360000 Content-Type: text/html; charset=utf-8 Date: Wed, 01 Feb 2023 16:05:09 GMT Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip" Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT" Server: ECS (ska/F709) Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ Vary: Accept-Encoding X-Cache: HIT x-tw-cdn: VZ Content-Length: 105435

	cdn.linkedin.oribi.io/partner/2149818/domain/app.airdeck.co/token	54.230.111.78	200 OK	534 B
URL HTTP/2 cdn.linkedin.oribi.io/partner/2149818/domain/app.airdeck.co/token IP 54.230.111.78:0 ASN #16509 AMAZON-02 File type data Size 534 B (534 bytes) Hash fc40a3fe8ac00dc2e9bedb25b6e87e11 f8696097d6a0a0da867334190a70cccfbf10213a ab290c8c66a18de5995b3c0678770056999f5525ee7124fc7fe78a2f82cb3dfd HTTP Headers `GET /partner/2149818/domain/app.airdeck.co/token HTTP/1.1 Host: cdn.linkedin.oribi.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: * Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: application/json date: Wed, 01 Feb 2023 13:05:04 GMT access-control-allow-origin: * cache-control: public, max-age=30454 content-encoding: gzip vary: accept-encoding x-cache: Hit from cloudfront via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: ay-8Fh388mZPQe18kkIqZFbOHijYeCL5z__PLOEdogQgXK3KbNs7_A== age: 10805 X-Firefox-Spdy: h2`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&gjid=1811085589&_gid=629433979.1675267532&_u=YCDAgEABAAAAAEAAI~&z=1814402769	173.194.73.154	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&gjid=1811085589&_gid=629433979.1675267532&_u=YCDAgEABAAAAAEAAI~&z=1814402769 IP 173.194.73.154:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&gjid=1811085589&_gid=629433979.1675267532&_u=YCDAgEABAAAAAEAAI~&z=1814402769 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://app.airdeck.co strict-transport-security: max-age=10886400; includeSubDomains; preload date: Wed, 01 Feb 2023 16:05:09 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html	54.230.111.71	200 OK	1.0 kB
URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html IP 54.230.111.71:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators Size 1.0 kB (1035 bytes) Hash 8665e233ef6caaf010ca89793f27b6f8 5c593fa5f33e55b3081308b43e6e801b56c047f7 435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac HTTP Headers `GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1 Host: vars.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/html content-length: 1035 date: Mon, 30 Jan 2023 16:06:06 GMT accept-ranges: bytes cache-control: max-age=31536000 content-encoding: br cross-origin-embedder-policy: require-corp cross-origin-resource-policy: cross-origin etag: "8665e233ef6caaf010ca89793f27b6f8" last-modified: Mon, 30 Jan 2023 16:05:37 GMT strict-transport-security: max-age=2592000; includeSubDomains x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: seogh2GvUJD93XUBdOaAs7__GD5YxnOqmEp2Q3x4ru1rcaE3ylfV0w== age: 172743 X-Firefox-Spdy: h2

	api.app.airdeck.co/user/defaultDeck	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/user/defaultDeck IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /user/defaultDeck HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:09 GMT set-cookie: AWSALB=4M99kdQcGmi9f7ftedhAUrhR4NpaWl6IWe5/3/VdQFsH6Dnyal6x6icHTLVgsnW+5RWnJ4G9SYxDqACFdGPqdd/QPj2myi36JIpxmPFmFiGdKWBvOL3aOgcAGbsA; Expires=Wed, 08 Feb 2023 16:05:09 GMT; Path=/ AWSALBCORS=4M99kdQcGmi9f7ftedhAUrhR4NpaWl6IWe5/3/VdQFsH6Dnyal6x6icHTLVgsnW+5RWnJ4G9SYxDqACFdGPqdd/QPj2myi36JIpxmPFmFiGdKWBvOL3aOgcAGbsA; Expires=Wed, 08 Feb 2023 16:05:09 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 46e2bec06a11406d5cdcec9c0e76911d edc777878dca7029c70577edae741264a22ab010 21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash fdd297d735fd32f5052cefb7d679b674 c80a7672d3d8756dc5160e60ac8dc3b0b6d8ac51 9eaf55e59e9a60c38c009353fa4f6fa087c99d94eceaf98663665fa7b08bfd66 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5851 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:09 GMT Last-Modified: Wed, 01 Feb 2023 14:27:38 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 313`

	app.airdeck.co/514.4093566fafff887a.js	52.10.103.104	200 OK	748 kB
URL HTTP/2 app.airdeck.co/514.4093566fafff887a.js IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 748 kB (748144 bytes) Hash 541ec7e290fce9c7ef10cbae60f921b7 c518d8ab47dd04ed469defc979efd7a201a10fa2 5a7374a355a89024ffcf6833c5d42534c41f3b3495b195c9e2491efeddfa323f HTTP Headers GET /514.4093566fafff887a.js HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.1.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107 Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:09 GMT content-type: application/javascript content-length: 748144 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-b6a70" accept-ranges: bytes X-Firefox-Spdy: h2`

	syndication.twitter.com/settings?session_id=a2ed153e95ba80dd7f35d8afb5b72db0adeadfde	104.244.42.200	200 OK	326 B
URL HTTP/2 syndication.twitter.com/settings?session_id=a2ed153e95ba80dd7f35d8afb5b72db0adeadfde IP 104.244.42.200:0 ASN #13414 TWITTER File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators Size 326 B (326 bytes) Hash 11f6a2d6bb52340b52d53f9cf72973e8 ea0c3e5d850a2659b3344d84957b691a6f7942b8 a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff HTTP Headers `GET /settings?session_id=a2ed153e95ba80dd7f35d8afb5b72db0adeadfde HTTP/1.1 Host: syndication.twitter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://platform.twitter.com/ Origin: https://platform.twitter.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:09 GMT perf: 7626143928 vary: Origin server: tsa_o content-type: application/json; charset=utf-8 cache-control: must-revalidate, max-age=600 last-modified: Wed, 01 Feb 2023 16:05:09 GMT content-length: 326 content-encoding: gzip x-transaction-id: 59adde60717794d8 strict-transport-security: max-age=631138519 access-control-allow-origin: https://platform.twitter.com access-control-allow-credentials: true x-response-time: 106 x-connection-hash: 044526facc479f8874aae06af996a37067617c2f2ac7cfe999270e33176c7e24 X-Firefox-Spdy: h2

	app.airdeck.co/771.054ac18e47d44d4a.js	52.10.103.104	200 OK	68 kB
URL HTTP/2 app.airdeck.co/771.054ac18e47d44d4a.js IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type data Size 68 kB (68316 bytes) Hash 3315b6999637291711ab85ba678211fa d1bba723aa49e6276dfdb0f1313a9bf0b64be153 b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5 HTTP Headers GET /771.054ac18e47d44d4a.js HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.1.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107 Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:09 GMT content-type: application/javascript content-length: 387889 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-5eb31" accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b4c9a8ce96aa57d27a6bd55df00f08ac 180302ed4863fb5b22b45ab0cc7c770a12a8c63d 3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash df4a6d84addba49571d9f6ae44c61a3f 28c8093de27e27645cf6dfd5ae93a62fc77b9be5 cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&_u=YCDAgEABAAAAAEAAI~&z=381850601	142.250.74.67	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&_u=YCDAgEABAAAAAEAAI~&z=381850601 IP 142.250.74.67:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&_u=YCDAgEABAAAAAEAAI~&z=381850601 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Wed, 01 Feb 2023 16:05:10 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&_u=YCDAgEABAAAAAEAAI~&z=381850601	142.250.74.164	200 OK	42 B
URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&_u=YCDAgEABAAAAAEAAI~&z=381850601 IP 142.250.74.164:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-173563629-1&cid=1431348995.1675267528&jid=736183130&_u=YCDAgEABAAAAAEAAI~&z=381850601 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Wed, 01 Feb 2023 16:05:10 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a4253e662d539c01b8656dbb6d73aab1 08f71eead367b6fa76b99f7f590680a5f5650b62 f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	px.ads.linkedin.com/collect?v=2&fmt=js&pid=2149818&time=1675267531758&url=https%3A%2F%2Fapp.airdeck.co%2Fview-decks%2F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%2Fdecks-2291519g6gl94r0n6b	13.107.42.14	302 Found	0 B
URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2149818&time=1675267531758&url=https%3A%2F%2Fapp.airdeck.co%2Fview-decks%2F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%2Fdecks-2291519g6gl94r0n6b IP 13.107.42.14:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /collect?v=2&fmt=js&pid=2149818&time=1675267531758&url=https%3A%2F%2Fapp.airdeck.co%2Fview-decks%2F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%2Fdecks-2291519g6gl94r0n6b HTTP/1.1 Host: px.ads.linkedin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 302 Found location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2149818%26time%3D1675267531758%26url%3Dhttps%253A%252F%252Fapp.airdeck.co%252Fview-decks%252F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%252Fdecks-2291519g6gl94r0n6b%26liSync%3Dtrue set-cookie: UserMatchHistory=AQI_QSoyFteYSAAAAYYNuY9PKWyoAfECoPbGjAqyJyupugBW9RssowbQYYN7XM1xCu5F1VAwauI6-Q; Max-Age=2592000; Expires=Fri, 03 Mar 2023 16:05:10 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQL7LFDMBmeGFgAAAYYNuY9PQ23cNmFGcudCaY4QzBXGsjSGpoRdywFmX2RaLO7J4UXSwNIJoNqAuNW67lTTsQ; Max-Age=2592000; Expires=Fri, 03 Mar 2023 16:05:10 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&ccb44ddc-32af-46bc-831b-f086921d4eb0"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 16:05:10 GMT; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2480:u=1:x=1:i=1675267510:t=1675353910:v=2:sig=AQE_gbkZvt9q2Ws_uevu0Ce7HDrAHH3X"; Expires=Thu, 02 Feb 2023 16:05:10 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure linkedin-action: 1 x-li-fabric: prod-lva1 x-li-pop: afd-prod-lva1-x x-li-proto: http/2 x-li-uuid: AAXzpZzXslADCUxuaZV2oQ== x-cache: CONFIG_NOCACHE x-msedge-ref: Ref A: A8A5CF4A322A49698FED59772F041F42 Ref B: OSL30EDGE0518 Ref C: 2023-02-01T16:05:10Z date: Wed, 01 Feb 2023 16:05:09 GMT content-length: 0 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash d06fd066caf4dfa1e21a722a5c468158 acb765577662906ae8e11242bed487ce1051db28 4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	e1.o.lencr.org/	23.33.119.27	200 OK	346 B
URL HTTP/1.1 e1.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 346 B (346 bytes) Hash e824c77a1345418430675a8d5b642c67 095596cebdb3861447d2f14607484a17a8a28531 f554a24893539a7f4732384e2938f20018d15f0db7d6952aa5822f4d616de10b HTTP Headers `POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 346 ETag: "F554A24893539A7F4732384E2938F20018D15F0DB7D6952AA5822F4D616DE10B" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2278 Expires: Wed, 01 Feb 2023 16:43:08 GMT Date: Wed, 01 Feb 2023 16:05:10 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 797aa8d1a6788ed6166b0647dc75897a 78987442dcb1192fc8edc6b8120e0d3c734ebb78 88f686f31462600ffb1e88f859c8e6585a25edefa3434988f8810ddcdbf53e24 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3368 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 16:05:10 GMT Last-Modified: Wed, 01 Feb 2023 15:09:03 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 279`

	api.app.airdeck.co/player/getPlayerDeckDetails/decks-2291519g6gl94r0n6b/22915?previewFor=&viewer_uuid=412d7090-a24a-11ed-9f7a-397f98c9e940	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/player/getPlayerDeckDetails/decks-2291519g6gl94r0n6b/22915?previewFor=&viewer_uuid=412d7090-a24a-11ed-9f7a-397f98c9e940 IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /player/getPlayerDeckDetails/decks-2291519g6gl94r0n6b/22915?previewFor=&viewer_uuid=412d7090-a24a-11ed-9f7a-397f98c9e940 HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:10 GMT set-cookie: AWSALB=u2sNBXVR+7Qg6u7ocHwqHHG9jCujDUqedwW5IftpPbQ+h34VG4Xia5juNkKniDnnowI72PCGBqzPqP6VVCIkRxcVAQJfnePPChodOL0v3s3ys8qdGdPY+yOFAODO; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=u2sNBXVR+7Qg6u7ocHwqHHG9jCujDUqedwW5IftpPbQ+h34VG4Xia5juNkKniDnnowI72PCGBqzPqP6VVCIkRxcVAQJfnePPChodOL0v3s3ys8qdGdPY+yOFAODO; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization X-Firefox-Spdy: h2

	vc.hotjar.io/sessions/2317549?s=0.25&r=0.21258993891974953	54.230.111.8	204 No Content	0 B
URL HTTP/2 vc.hotjar.io/sessions/2317549?s=0.25&r=0.21258993891974953 IP 54.230.111.8:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sessions/2317549?s=0.25&r=0.21258993891974953 HTTP/1.1 Host: vc.hotjar.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content access-control-allow-origin: * cache-control: no-store date: Wed, 01 Feb 2023 16:05:10 GMT server: Python/3.7 aiohttp/3.5.4 x-cache: Miss from cloudfront via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: qKwWT9lc9voYhCkdt1b1AtvSqxV5RWoJcbL0vWxghJFBIOy_T1AdIQ== X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash d7261470ca9140952f4647686b7c2e51 14e619e15465ddf3777f5a8680b0c63c7a683e9e a83d661d66e5565e877cee031de6252bf94f58680e96905a0d122577ab6ab67d HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Wed, 01 Feb 2023 16:05:10 GMT Last-Modified: Wed, 01 Feb 2023 14:48:33 GMT Server: ECS (bsa/EB20) X-Cache: Miss from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 5A_vLg6Hxrz1jKCQi0pJs_zsdjg_MJl5hkeKW4WsmmFb2saxgGHlfg== Age: 4598`

	api.app.airdeck.co/player/getPlayerDeckDetails/decks-2291519g6gl94r0n6b/22915?previewFor=&viewer_uuid=412d7090-a24a-11ed-9f7a-397f98c9e940	52.10.103.104	200 OK	2.3 kB
URL HTTP/2 api.app.airdeck.co/player/getPlayerDeckDetails/decks-2291519g6gl94r0n6b/22915?previewFor=&viewer_uuid=412d7090-a24a-11ed-9f7a-397f98c9e940 IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (2264), with no line terminators Size 2.3 kB (2264 bytes) Hash 66f0024a1ce19c847d910902e39567df 28ef21455f28bf9ceb32d5e333c1dca326da52ef d5b32c81a7d385a06f5af5ba959de401d272678ec0fc00c27914711c757f2524 HTTP Headers GET /player/getPlayerDeckDetails/decks-2291519g6gl94r0n6b/22915?previewFor=&viewer_uuid=412d7090-a24a-11ed-9f7a-397f98c9e940 HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Authorization: null ad_user_tz: {"zone":"Africa/Abidjan","abbr":"GMT","userTZZ":"+0000","userTZ":"+00:00","userOffset":0} ad_client_version: 1.6.1 Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: application/json; charset=utf-8 content-length: 2264 set-cookie: AWSALB=ViCAZz2K+9myGrNgo+CdG+seSwqH6x/wLR31paFiaqSL6QknpP7LpfMHX2yLIQjyWg+gcBrJC0F/r7AxzDixjQK8E2cED9IaozEqK7VUOKGtNOPDBOKCsXLCJF0Z; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=ViCAZz2K+9myGrNgo+CdG+seSwqH6x/wLR31paFiaqSL6QknpP7LpfMHX2yLIQjyWg+gcBrJC0F/r7AxzDixjQK8E2cED9IaozEqK7VUOKGtNOPDBOKCsXLCJF0Z; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure _ad_c_sess=WGSFkPaihfa%2FRxic0f3HKFyrRKJ4mVvT9AFwAWX8jYC6H24O0meSwMoqu648DN1PH0o2qcElVJuNbfeA%2BztsAg%3D%3D; Max-Age=300; Path=/; Expires=Wed, 01 Feb 2023 16:10:10 GMT; HttpOnly; Secure access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS x-ratelimit-limit: 100 x-ratelimit-remaining: 99 x-ratelimit-reset: 1675267512 access-control-allow-credentials: true access-control-allow-headers: X-Requested-With,content-type strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff content-security-policy: default-src 'self'; cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0 etag: W/"8d8-KO8hRV8ov5zrMtXjM8HcoybaUu8" X-Firefox-Spdy: h2

	www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2149818%26time%3D1675267531758%26url%3Dhttps%253A%252F%252Fapp.airdeck.co%252Fview-decks%252F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%252Fdecks-2291519g6gl94r0n6b%26liSync%3Dtrue	13.107.42.14	302 Found	0 B
URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2149818%26time%3D1675267531758%26url%3Dhttps%253A%252F%252Fapp.airdeck.co%252Fview-decks%252F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%252Fdecks-2291519g6gl94r0n6b%26liSync%3Dtrue IP 13.107.42.14:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2149818%26time%3D1675267531758%26url%3Dhttps%253A%252F%252Fapp.airdeck.co%252Fview-decks%252F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%252Fdecks-2291519g6gl94r0n6b%26liSync%3Dtrue HTTP/1.1 Host: www.linkedin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.airdeck.co/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 302 Found cache-control: no-cache, no-store pragma: no-cache expires: Thu, 01 Jan 1970 00:00:00 GMT location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2149818&time=1675267531758&url=https%3A%2F%2Fapp.airdeck.co%2Fview-decks%2F53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8%2Fdecks-2291519g6gl94r0n6b&liSync=true set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&95ba1dd7-2007-42f7-8f55-7a04a4d8b03e"; Domain=.linkedin.com; Expires=Thu, 01-Feb-2024 16:05:10 GMT; Path=/; Secure; SameSite=None bscookie="v=1&2023020116051031ebeff2-0560-45f4-8407-90f5ef8d09b9AQF8xx5wcjAXZb9wadYGTAIKbpneTJT4"; Domain=.www.linkedin.com; Expires=Thu, 01-Feb-2024 16:05:10 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NzUyNjc1MTA7MjswMjFzyw/0AO+YipKPMtyQKokxB/f+N2qKYb+1UnutwmvQ8w==; Domain=.linkedin.com; Expires=Mon, 31 Jul 2023 16:05:10 GMT; Path=/; Secure; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2453:u=1:x=1:i=1675267510:t=1675353910:v=2:sig=AQHXKoS_xTf1S09frruaPs4yBHyvP1Qw"; Expires=Thu, 02 Feb 2023 16:05:10 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure linkedin-action: 1 content-security-policy: default-src ; connect-src 'self' .licdn.com .linkedin.com wss://.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ .qualtrics.com .adyen.com .microsoft.com; img-src data: blob: ; font-src data: ; style-src 'unsafe-inline' 'self' static-src.linkedin.com .licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com .ads.linkedin.com .licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: ; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: ; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com x-frame-options: sameorigin x-content-type-options: nosniff strict-transport-security: max-age=31536000 expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct" x-li-fabric: prod-ltx1 x-li-pop: afd-prod-ltx1-x x-li-proto: http/2 x-li-uuid: AAXzpZzgM5LBcnRhQkrjnA== x-cache: CONFIG_NOCACHE x-msedge-ref: Ref A: 4CC802D8D3D64F3FABF5BC765522EAC6 Ref B: OSL30EDGE0518 Ref C: 2023-02-01T16:05:10Z date: Wed, 01 Feb 2023 16:05:10 GMT content-length: 0 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2	142.250.74.67	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP 142.250.74.67:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size 16 kB (15860 bytes) Hash e9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 HTTP Headers `GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://app.airdeck.co Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 31 Jan 2023 13:09:06 GMT expires: Wed, 31 Jan 2024 13:09:06 GMT cache-control: public, max-age=31536000 age: 96964 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	api.app.airdeck.co/player/getPlayerSession/22915	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/player/getPlayerSession/22915 IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /player/getPlayerSession/22915 HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:10 GMT set-cookie: AWSALB=VEghusPwYbUH/p3vU7DvEQ/aGmYAVsP/jjR/moPuOYnZxaTKqK0Sgid59amwAVfELgANfY79WnOwaox/Ns7vLBbCynSHavY+9nvweEGIm5HngKom5oOKhPo4/6pz; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=VEghusPwYbUH/p3vU7DvEQ/aGmYAVsP/jjR/moPuOYnZxaTKqK0Sgid59amwAVfELgANfY79WnOwaox/Ns7vLBbCynSHavY+9nvweEGIm5HngKom5oOKhPo4/6pz; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization X-Firefox-Spdy: h2

	api.app.airdeck.co/player/updateLinkViewedStatus	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/player/updateLinkViewedStatus IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /player/updateLinkViewedStatus HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization,content-type Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:10 GMT set-cookie: AWSALB=J/rMztfn0mBw8koST54qrO/mrFj7AQ6C0vZ1Wg1XgkIF1iN0PIAWoXI3ANwgotDYiD5eAlCrYwuVNq/vMVqfG9TZ0U9sy9mOHhgd0zByfn8ZNE+e1Iu0t3nakGJv; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=J/rMztfn0mBw8koST54qrO/mrFj7AQ6C0vZ1Wg1XgkIF1iN0PIAWoXI3ANwgotDYiD5eAlCrYwuVNq/vMVqfG9TZ0U9sy9mOHhgd0zByfn8ZNE+e1Iu0t3nakGJv; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization,content-type X-Firefox-Spdy: h2

	api.app.airdeck.co/player/getPlayerDeckAllSlidesDetails/22915?previewFor=	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/player/getPlayerDeckAllSlidesDetails/22915?previewFor= IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /player/getPlayerDeckAllSlidesDetails/22915?previewFor= HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:10 GMT set-cookie: AWSALB=xdchPZMNztgrMfKfpnjB8Cl0w/dlKDzN9L6LM+AGKsmzlD8UrMBzLRn0NBTswRXoEPQHt+l60l23WL7D5VH5Ko2qZ8fZoSmPlCsMElEGhu2yqceFu0A9WT5nR8D+; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=xdchPZMNztgrMfKfpnjB8Cl0w/dlKDzN9L6LM+AGKsmzlD8UrMBzLRn0NBTswRXoEPQHt+l60l23WL7D5VH5Ko2qZ8fZoSmPlCsMElEGhu2yqceFu0A9WT5nR8D+; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization X-Firefox-Spdy: h2

	app.airdeck.co/MaterialIcons-Regular.7ea2023eeca07427.woff2	52.10.103.104	200 OK	44 kB
URL HTTP/2 app.airdeck.co/MaterialIcons-Regular.7ea2023eeca07427.woff2 IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 44300, version 1.720\012- data Size 44 kB (44300 bytes) Hash 570eb83859dc23dd0eec423a49e147fe 09963592e8c953cc7e14e3fb0a5b05d5042e8435 a87d66c91b2e7dc5530aef76c03bd6a3d25ea5826110bf4803b561b811cc8726 HTTP Headers GET /MaterialIcons-Regular.7ea2023eeca07427.woff2 HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://app.airdeck.co/styles.196a385f18bed52e.css Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.2.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107; _gid=GA1.2.629433979.1675267532; _dc_gtm_UA-173563629-1=1; ln_or=eyIyMTQ5ODE4IjoiZCJ9; _hjSessionUser_2317549=eyJpZCI6ImZmMWU0Yjk2LTBjMzUtNTczMC04ZjNkLTEyYWEyMjUyMzE0ZiIsImNyZWF0ZWQiOjE2NzUyNjc1MzIzOTUsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2317549=eyJpZCI6IjUyZmYxYzBhLTU3M2UtNDRlMC04ZDZlLWQzNTZjY2FjNzZhZSIsImNyZWF0ZWQiOjE2NzUyNjc1MzI0MzMsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=1 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: font/woff2 content-length: 44300 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:04 GMT etag: "63da21a4-ad0c" accept-ranges: bytes X-Firefox-Spdy: h2`

	api.app.airdeck.co/player/getPlayerDeckAllSlidesDetails/22915?previewFor=	52.10.103.104	200 OK	22 kB
URL HTTP/2 api.app.airdeck.co/player/getPlayerDeckAllSlidesDetails/22915?previewFor= IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (21454), with no line terminators Size 22 kB (21454 bytes) Hash 206e529496e1858ba08ee32ca103a7fa bd230e0cfe4972c980bc84a638a16f9f5ffa9228 86024a9016090097929565dc675ce317c48305ad025829105e7cae808af59584 HTTP Headers GET /player/getPlayerDeckAllSlidesDetails/22915?previewFor= HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Authorization: null ad_user_tz: {"zone":"Africa/Abidjan","abbr":"GMT","userTZZ":"+0000","userTZ":"+00:00","userOffset":0} ad_client_version: 1.6.1 Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: application/json; charset=utf-8 content-length: 21454 set-cookie: AWSALB=ckcar+AjMdxeN3wPx1D3UTrLRlSouP49s+Nwez21qKzuHZOTRJL4gB7gl/v2qZfZGVbd1dRXvNxCV818zzdjarR0LnAx3qpMuvpFHDkZBaa5epV/U8MagSnnkEsl; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=ckcar+AjMdxeN3wPx1D3UTrLRlSouP49s+Nwez21qKzuHZOTRJL4gB7gl/v2qZfZGVbd1dRXvNxCV818zzdjarR0LnAx3qpMuvpFHDkZBaa5epV/U8MagSnnkEsl; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure _ad_c_sess=s0e%2Fs0ajVEuH5lsMnkATIlLggcp9RqM%2FglEWr1xGy55XzYOknmSNjmpMLeTljRAmNuuOSIuUmvyg%2BQRtwGgNAA%3D%3D; Max-Age=300; Path=/; Expires=Wed, 01 Feb 2023 16:10:10 GMT; HttpOnly; Secure access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS x-ratelimit-limit: 100 x-ratelimit-remaining: 99 x-ratelimit-reset: 1675267512 access-control-allow-credentials: true access-control-allow-headers: X-Requested-With,content-type strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff content-security-policy: default-src 'self'; cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0 etag: W/"53ce-vSMODP5JcsmAvISmOKFvn1/6kig" X-Firefox-Spdy: h2

	api.app.airdeck.co/player/getPlayerSession/22915	52.10.103.104	200 OK	116 B
URL HTTP/2 api.app.airdeck.co/player/getPlayerSession/22915 IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 116 B (116 bytes) Hash 35d33690c5f1a2e196b89e2c9b430795 b365a12b8953163239c5feda5e236ecb30038b52 1355094b8a1a46c60d10005852d9cb220e59a298509c99e2897731f56474cf48 HTTP Headers GET /player/getPlayerSession/22915 HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Authorization: null ad_user_tz: {"zone":"Africa/Abidjan","abbr":"GMT","userTZZ":"+0000","userTZ":"+00:00","userOffset":0} ad_client_version: 1.6.1 Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: application/json; charset=utf-8 content-length: 116 set-cookie: AWSALB=hsMipaH0QNSSXMphqg2xaGuSoUhSukMn3SFF8tjEGngT0kZz1UFwRwVaDBasfPQdjxG5UYGR1S+yAAD1Ihl4HvWi9lmHUyrt2S4CT4gKnkSS2LuqbVSETb0r5Gy9; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=hsMipaH0QNSSXMphqg2xaGuSoUhSukMn3SFF8tjEGngT0kZz1UFwRwVaDBasfPQdjxG5UYGR1S+yAAD1Ihl4HvWi9lmHUyrt2S4CT4gKnkSS2LuqbVSETb0r5Gy9; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure _ad_c_sess=DURSXguMSO3%2BXSd2%2BZqGvpkT%2BE2ec3Acskk4IrN7zo8pL3RCXcvvA531nN%2FDNdSi1fFpFsIG6XI8UmpXQXErAA%3D%3D; Max-Age=300; Path=/; Expires=Wed, 01 Feb 2023 16:10:10 GMT; HttpOnly; Secure access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS x-ratelimit-limit: 100 x-ratelimit-remaining: 99 x-ratelimit-reset: 1675267512 access-control-allow-credentials: true access-control-allow-headers: X-Requested-With,content-type strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff content-security-policy: default-src 'self'; cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0 etag: W/"74-s2WhK4lTFjI5xf7aXiNuyzADi1I" X-Firefox-Spdy: h2

	api.app.airdeck.co/player/updateLinkViewedStatus	52.10.103.104	200 OK	222 B
URL HTTP/2 api.app.airdeck.co/player/updateLinkViewedStatus IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 222 B (222 bytes) Hash dfa556106c81bb95c58f47fa16ef8215 4762d4f9ce1065ef041247db022ab91c04f1f613 a4267997d708fbbe2c1631c712a6b75e2822b4d164ea980b1c004c4bc5543158 HTTP Headers POST /player/updateLinkViewedStatus HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Authorization: null ad_user_tz: {"zone":"Africa/Abidjan","abbr":"GMT","userTZZ":"+0000","userTZ":"+00:00","userOffset":0} ad_client_version: 1.6.1 Content-Type: application/json Content-Length: 79 Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: application/json; charset=utf-8 content-length: 222 set-cookie: AWSALB=20GeedByxK2WamNAud3PXayU/bEkOdaAr4p8j+V5vrxS2s5p5Yn/hcPBl8YEXpq9xZBho2dQfQalrMdZgk1YWyGWk1nGVreJ1eQvkN9q8ezZsqfN3GSYAkpCV5qF; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/ AWSALBCORS=20GeedByxK2WamNAud3PXayU/bEkOdaAr4p8j+V5vrxS2s5p5Yn/hcPBl8YEXpq9xZBho2dQfQalrMdZgk1YWyGWk1nGVreJ1eQvkN9q8ezZsqfN3GSYAkpCV5qF; Expires=Wed, 08 Feb 2023 16:05:10 GMT; Path=/; SameSite=None; Secure _ad_c_sess=t3qsivYvNhXo1uqmyGhCMuE7gs%2FuPAmupxt0kGpe9q8gK%2B%2FuoKr7zG2p1nZwrPYpbkx2eFNPBsxC%2BssAUuSfDQ%3D%3D; Max-Age=300; Path=/; Expires=Wed, 01 Feb 2023 16:10:10 GMT; HttpOnly; Secure access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS, PUT, PATCH, DELETE x-ratelimit-limit: 100 x-ratelimit-remaining: 99 x-ratelimit-reset: 1675267512 access-control-allow-credentials: true access-control-allow-headers: X-Requested-With,content-type strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff content-security-policy: default-src 'self'; cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0 etag: W/"de-R2LU+c4QZe8EEkfbAiq5HATx9hM" X-Firefox-Spdy: h2

	ipapi.co/json/?key=71XKTisZReiIHE3BGyV1GiwmUalowJWCp1gp198fWjbq5rrazo	104.26.9.44	200 OK	826 B
URL HTTP/2 ipapi.co/json/?key=71XKTisZReiIHE3BGyV1GiwmUalowJWCp1gp198fWjbq5rrazo IP 104.26.9.44:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text Size 826 B (826 bytes) Hash b109c41b12e776dd07b8656f348ec765 ef7491ed3601da10dfdd71900b1c031571ccbfab eb1692cef096690e18337587abbbf283567ee2ee3063f827b09db1b690e83f6b HTTP Headers `GET /json/?key=71XKTisZReiIHE3BGyV1GiwmUalowJWCp1gp198fWjbq5rrazo HTTP/1.1 Host: ipapi.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: application/json allow: OPTIONS, POST, OPTIONS, HEAD, GET x-frame-options: DENY vary: Host, Origin access-control-allow-origin: https://app.airdeck.co x-content-type-options: nosniff referrer-policy: same-origin cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KokhF%2FVEt%2BqObTdSzcxgxbWCWYWS9apCzwkI0Oqu21vk5P9w6C99KfJvsAf%2FLOn5OousHmGETo1BDFR7hVaSNwsmf938M0TYhxyKFMsvOW2MOlzeD3DqwLa0"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 792bed530ebab524-OSL content-encoding: br X-Firefox-Spdy: h2

	app.airdeck.co/assets/img//gallery/airdeck-play-button-overlay.png	52.10.103.104	200 OK	13 kB
URL HTTP/2 app.airdeck.co/assets/img//gallery/airdeck-play-button-overlay.png IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data Size 13 kB (12713 bytes) Hash 4a090ae204a11fd6129575531a51bcaf d011466715cb7c56d74ce4cade69bc82241ae76b 227faf55eb0cea2af04d7425d79560794c799c72739eb2281258fbb8addfe1df HTTP Headers GET /assets/img//gallery/airdeck-play-button-overlay.png HTTP/1.1 Host: app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/view-decks/53616c7465645f5fc901c32743a7338c99fb34c333a36e82dcdec258f2f983e8/decks-2291519g6gl94r0n6b Cookie: _gcl_au=1.1.883172535.1675267528; _ga_1D1YQX68B6=GS1.1.1675267527.1.0.1675267527.0.0.0; _ga=GA1.2.1431348995.1675267528; _lfa=LF1.1.8e08e10772b47d9b.1675267528107; _gid=GA1.2.629433979.1675267532; _dc_gtm_UA-173563629-1=1; ln_or=eyIyMTQ5ODE4IjoiZCJ9; _hjSessionUser_2317549=eyJpZCI6ImZmMWU0Yjk2LTBjMzUtNTczMC04ZjNkLTEyYWEyMjUyMzE0ZiIsImNyZWF0ZWQiOjE2NzUyNjc1MzIzOTUsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2317549=eyJpZCI6IjUyZmYxYzBhLTU3M2UtNDRlMC04ZDZlLWQzNTZjY2FjNzZhZSIsImNyZWF0ZWQiOjE2NzUyNjc1MzI0MzMsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:11 GMT content-type: image/png content-length: 12713 server: nginx/1.22.1 last-modified: Wed, 01 Feb 2023 08:24:14 GMT etag: "63da21ae-31a9" accept-ranges: bytes X-Firefox-Spdy: h2`

	api.app.airdeck.co/hotspot/getBySlideForPlayer?deckId=22915&ddId=372165&forViewType=player-view&previewFor=	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/hotspot/getBySlideForPlayer?deckId=22915&ddId=372165&forViewType=player-view&previewFor= IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hotspot/getBySlideForPlayer?deckId=22915&ddId=372165&forViewType=player-view&previewFor= HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:11 GMT set-cookie: AWSALB=tlyIKSLrG0sFeklHhKW78+vNLtcuotBi95VEpWkNL/L+4zMMc3wl8GnnquJTCNYFQwA6khwv62dPya42P6ZYljUt7SA9Mtn98iJepUfEPOXi4Ahe4lTDbWbIk7qx; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/ AWSALBCORS=tlyIKSLrG0sFeklHhKW78+vNLtcuotBi95VEpWkNL/L+4zMMc3wl8GnnquJTCNYFQwA6khwv62dPya42P6ZYljUt7SA9Mtn98iJepUfEPOXi4Ahe4lTDbWbIk7qx; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization X-Firefox-Spdy: h2

	ad-assets-files.s3.us-west-2.amazonaws.com/images/logo/AirDeck-Logo-White-RTM-600.png	3.5.81.142	200 OK	7.1 kB
URL HTTP/1.1 ad-assets-files.s3.us-west-2.amazonaws.com/images/logo/AirDeck-Logo-White-RTM-600.png IP 3.5.81.142:0 ASN #16509 AMAZON-02 File type PNG image data, 600 x 150, 8-bit/color RGBA, non-interlaced\012- data Size 7.1 kB (7111 bytes) Hash 1102c19fde93390f89875d4ac455b945 298ae4c85269674212ecbd66ab7771f589f9146a a9b07f4bcbac7e96f7f8c441a607d3c0d7bfc84f295ddf798e4854b3477fb613 HTTP Headers `GET /images/logo/AirDeck-Logo-White-RTM-600.png HTTP/1.1 Host: ad-assets-files.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: hKSIOxBr2xfJataKhgluj+Twuf4pKUHfycakKMyw7Wuu9PjAD6obOUC9hXU2kap1iUQv2tomtMXOW2/mUBlJyQ== x-amz-request-id: JAEQJ4W6W5VRE3Z0 Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Fri, 02 Jul 2021 13:53:18 GMT ETag: "1102c19fde93390f89875d4ac455b945" Cache-Control: max-age=7776000 Accept-Ranges: bytes Content-Type: image/png Server: AmazonS3 Content-Length: 7111`

	cdn.plyr.io/static/blank.mp4	104.27.194.88	206 Partial Content	1.8 kB
URL HTTP/2 cdn.plyr.io/static/blank.mp4 IP 104.27.194.88:0 ASN #13335 CLOUDFLARENET File type ISO Media, MP4 v2 [ISO 14496-14]\012- data Size 1.8 kB (1777 bytes) Hash 08fc2557b6c938f1a251e59b016e90e2 8d385ebd53fd721167b5ead62fec0ed81a0d9d5a 5747997d80825cbafcdbe5ab97d7b5502c06b1aae85fed9610845348b3da4d98 HTTP Headers `GET /static/blank.mp4 HTTP/1.1 Host: cdn.plyr.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: video Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 206 Partial Content date: Wed, 01 Feb 2023 16:05:11 GMT content-type: video/mp4 content-length: 1777 x-amz-id-2: sPc+Srf9ETsquV5YMUSfmDKK9SEyfXK97+uTc4P8TmGsV4A3ZsfXFd+PGnNctXwMu9Eoyq25pdE= x-amz-request-id: 9DFGXK5BG1Q7T1YF last-modified: Wed, 14 Nov 2018 10:16:31 GMT etag: "08fc2557b6c938f1a251e59b016e90e2" cache-control: max-age=31536000 via: 1.1 varnish, 1.1 varnish x-served-by: cache-iad-kcgs7200160-IAD, cache-yyz4534-YYZ x-cache: HIT, HIT x-cache-hits: 1, 15 x-timer: S1675260074.397344,VS0,VE0 access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept cf-cache-status: HIT content-range: bytes 0-1776/1777 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wIt3wYpgPitGqZfdwePP1qaXK8jweBZG4Z9an3DcYW0Af9CojnnNG16WrjYvBNruLrwwsHpDX6mWn8afRlvjfh%2Fqq8T52WWwu2VeONe%2BIwJandC5EFzqqKpYCnQb"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 792bed5a1a03b506-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	api.app.airdeck.co/hotspot/getBySlideForPlayer?deckId=22915&ddId=372165&forViewType=player-view&previewFor=	52.10.103.104	200 OK	49 B
URL HTTP/2 api.app.airdeck.co/hotspot/getBySlideForPlayer?deckId=22915&ddId=372165&forViewType=player-view&previewFor= IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 49 B (49 bytes) Hash 8a9301fe4dacaa9ed58a0034b5321c48 4aa863abee5654a0f4415ff6203acd14d97d9f54 69a9aafc1d76c833754750fd42b518920343f274f946566d22942495f6b6c3c1 HTTP Headers GET /hotspot/getBySlideForPlayer?deckId=22915&ddId=372165&forViewType=player-view&previewFor= HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Authorization: null ad_user_tz: {"zone":"Africa/Abidjan","abbr":"GMT","userTZZ":"+0000","userTZ":"+00:00","userOffset":0} ad_client_version: 1.6.1 Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:11 GMT content-type: application/json; charset=utf-8 content-length: 49 set-cookie: AWSALB=hWROW19qhisKI8pU6AQuJ03EFeN2EZKbkf0Re3S+yy2rMyHS3kMjCrlFF/2XbsHu7fxsOahgGhq48byff96cRLqHCYSvQYz8BszXysf52w5nT+GSoRNOUdrH1P3Y; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/ AWSALBCORS=hWROW19qhisKI8pU6AQuJ03EFeN2EZKbkf0Re3S+yy2rMyHS3kMjCrlFF/2XbsHu7fxsOahgGhq48byff96cRLqHCYSvQYz8BszXysf52w5nT+GSoRNOUdrH1P3Y; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/; SameSite=None; Secure _ad_c_sess=zuIw0hrW6yGOsoZlVKUJxbH1RpDFpEq63tA6RlI2pJOGXvM40QQQlu4xz5vo2jiK631eO29%2Fr79Pm8Nqji0wag%3D%3D; Max-Age=300; Path=/; Expires=Wed, 01 Feb 2023 16:10:11 GMT; HttpOnly; Secure access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS x-ratelimit-limit: 100 x-ratelimit-remaining: 99 x-ratelimit-reset: 1675267513 access-control-allow-credentials: true access-control-allow-headers: X-Requested-With,content-type strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff content-security-policy: default-src 'self'; cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0 etag: W/"31-Sqhjq+5WVKD0QV/2IDrNFNl9n1Q" X-Firefox-Spdy: h2

	api.app.airdeck.co/player/saveUserDetails	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/player/saveUserDetails IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /player/saveUserDetails HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: PUT Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization,content-type Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:11 GMT set-cookie: AWSALB=2inSP/JE7sN8LYM01e0IPtgBMgYTJLrjTTSAg0G49NJuawHQwQZo0aMms0TNu+kYdCNR/vkRrAVJJLMPzzyvbhkgrxTY36Zs1dicpk39YUkjUPB1xeKX68rvdqbp; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/ AWSALBCORS=2inSP/JE7sN8LYM01e0IPtgBMgYTJLrjTTSAg0G49NJuawHQwQZo0aMms0TNu+kYdCNR/vkRrAVJJLMPzzyvbhkgrxTY36Zs1dicpk39YUkjUPB1xeKX68rvdqbp; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization,content-type X-Firefox-Spdy: h2

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_b696f2ad-3885-502e-a12c-b42e1543cfbe.jpg	52.218.234.233	200 OK	14 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_b696f2ad-3885-502e-a12c-b42e1543cfbe.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 14 kB (13709 bytes) Hash d0cfc7e64a683e7e9656300dfd6e9fa3 52b34939c28eb5b00e440c1969fb884d72f61e90 d9774367810fb47d5ce75b79166ff17fddec95ae93149b10c085bf5f993401db HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_b696f2ad-3885-502e-a12c-b42e1543cfbe.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: 1Xv1/QX4IbNDNrp+3yFGjwOps2Ijjo5WIDtLe1LmR0QIEvyHwtwfNY23ZJLCGilqNRhbvrxKp+U= x-amz-request-id: JAEGEWHNGDWZCWJR Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 22:00:45 GMT ETag: "d0cfc7e64a683e7e9656300dfd6e9fa3" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 13709`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_71a77d20-57c7-5ac6-bd6a-c08280ecf818.jpg	52.218.234.233	200 OK	17 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_71a77d20-57c7-5ac6-bd6a-c08280ecf818.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 17 kB (16959 bytes) Hash b424d6f573143fe7b4bd69f93139d00f 36ee0350f548869c900525ddfb4aa225370e0d62 374eae594e4146c5691ba30990c568a7c898ac80f132e1c4c4868919d67169e9 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_71a77d20-57c7-5ac6-bd6a-c08280ecf818.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: kTXYDqcLlh7dk+jEzWtuaHA2c66tjEQG2jce1BKwM+z9nogHqJ1JyzTHjAFPdksKzmBfDPRexGc= x-amz-request-id: JAEJ46P7V46T8MSF Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 22:01:05 GMT ETag: "b424d6f573143fe7b4bd69f93139d00f" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 16959`

	api.app.airdeck.co/player/saveUserDetails	52.10.103.104	200 OK	210 B
URL HTTP/2 api.app.airdeck.co/player/saveUserDetails IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 210 B (210 bytes) Hash c1df671ab3a500f05ff73397d844584f 53fb22efd8d9000b548fd39fe382744074af95b2 3bd8ff1759986231bbb44927749725da5f757eda7ed53ec3eccd01d5e7aaf3a7 HTTP Headers PUT /player/saveUserDetails HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Authorization: null ad_user_tz: {"zone":"Africa/Abidjan","abbr":"GMT","userTZZ":"+0000","userTZ":"+00:00","userOffset":0} ad_client_version: 1.6.1 Content-Type: application/json Content-Length: 791 Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:11 GMT content-type: application/json; charset=utf-8 content-length: 210 set-cookie: AWSALB=Axpvz/tjn34Rew9RB6y8Nc/y40M/md8pOoyFm/eXfyG0qbSHWTDDkWC6FWNUB9OSY57fWkyikovor0K9XOEhUXA6I7LfowV7mhzLgOVe7WFuKSTk8C26y0+KlAzG; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/ AWSALBCORS=Axpvz/tjn34Rew9RB6y8Nc/y40M/md8pOoyFm/eXfyG0qbSHWTDDkWC6FWNUB9OSY57fWkyikovor0K9XOEhUXA6I7LfowV7mhzLgOVe7WFuKSTk8C26y0+KlAzG; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/; SameSite=None; Secure _ad_c_sess=D0Y%2FxWdWMsEzy0sP97v94k%2F%2BduDCl0V13iI7wWJ6jfwkzFN00Pgc5Ih7aUmqWDkLfUGZKQNM9Gnxt7ZrX28QkA%3D%3D; Max-Age=300; Path=/; Expires=Wed, 01 Feb 2023 16:10:11 GMT; HttpOnly; Secure access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS, PUT, PATCH, DELETE x-ratelimit-limit: 100 x-ratelimit-remaining: 99 x-ratelimit-reset: 1675267513 access-control-allow-credentials: true access-control-allow-headers: X-Requested-With,content-type strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff content-security-policy: default-src 'self'; cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0 etag: W/"d2-U/si79jZAAtUj9Of44J0QHSvlbI" X-Firefox-Spdy: h2

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_d808af46-b2da-5996-9f26-a18a76db5f1a.jpg	52.218.234.233	200 OK	16 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_d808af46-b2da-5996-9f26-a18a76db5f1a.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 16 kB (15886 bytes) Hash 69759f4dd9b9b6b2cdca4ea9b1762957 60249cc0fedb75a2d689690eb9d575681e6282c0 2579ad63ee5d54bfb7902a374691fbd0233960977391a7cfc2523d44e890b834 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_d808af46-b2da-5996-9f26-a18a76db5f1a.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: rCCa0Mh6ZuxSktUrH7hbJ4+Kv0uAhQT8TJpe3Y48CyOr+YCIP0S2Fo07VGEcAb1K/pGVbiZlsyM= x-amz-request-id: JAEYPXT3G0CTC1F2 Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 22:01:21 GMT ETag: "69759f4dd9b9b6b2cdca4ea9b1762957" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 15886`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_c312ef1f-5105-5d55-9f1a-265a3c9830f4.jpg	52.218.234.233	200 OK	33 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_c312ef1f-5105-5d55-9f1a-265a3c9830f4.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 33 kB (32781 bytes) Hash a8fe0a7c3762ba368d0c45707f16ea81 a0d388e870e3a471eabb447e7efeee1ef3f30959 142a0f72ccfa042b7ca8be0677990954f08f721c2eabb04d127aefded9302049 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_c312ef1f-5105-5d55-9f1a-265a3c9830f4.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: nVFA6dpCAQTHYiUgy7L1u3qh4QJLVXHu9bo40gqTthaoN2WZpyhnLm9MJCtjuP+0MtiT9g+YmQ0= x-amz-request-id: JAEQRJG4FECXVSFE Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 21:59:36 GMT ETag: "a8fe0a7c3762ba368d0c45707f16ea81" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 32781`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_9b1f9c4c-2131-5621-bfb2-64de9dd76b5d.jpg	52.218.234.233	200 OK	13 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_9b1f9c4c-2131-5621-bfb2-64de9dd76b5d.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 13 kB (12812 bytes) Hash 9cfc7df4c4bf759dc6cff12007ee021e 4c837312504dcfd330ec68eaeefc527ab6141119 93398da6387ea22d374d00334861432a472bbe82c26b0f54de23955563b2a9d5 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_9b1f9c4c-2131-5621-bfb2-64de9dd76b5d.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: PX4KlmtaAPbaM35jV8qgSdd3DAUD0QznvaqWOnOPb2eeM3keT9vI+vGSg0uccNDIfTuZDWIEinM= x-amz-request-id: JAEJHMP10R9V9944 Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Mon, 05 Dec 2022 22:50:58 GMT ETag: "9cfc7df4c4bf759dc6cff12007ee021e" x-amz-server-side-encryption: AES256 Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 12812`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_475f1960-4d78-58c3-822d-61e4edfe8a8e.jpg	52.218.234.233	200 OK	21 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_475f1960-4d78-58c3-822d-61e4edfe8a8e.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 21 kB (21042 bytes) Hash fc00faad8302f91770bd98e72ff0dfd9 2949656c4d6d7b63db169dc8708d3d8cda25d0b9 c250ccc3674fab6925342aa61776fb445c2a2e300596a954021c4b63cee53d56 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_475f1960-4d78-58c3-822d-61e4edfe8a8e.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: 4t1M2XBvspCH+99fJM97xnGAbTcve0UTthSUSe1n/N4VW9K31e8jt981/YLttnA649POW5daqZM= x-amz-request-id: JAEMY7AT7PB7B1QM Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 22:01:41 GMT ETag: "fc00faad8302f91770bd98e72ff0dfd9" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 21042`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_6cea3b99-4a8f-55fb-b665-dde985a7964f.jpg	52.218.234.233	200 OK	15 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_6cea3b99-4a8f-55fb-b665-dde985a7964f.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 15 kB (14909 bytes) Hash c4737f9179319239f1781bbb3c953cdd 4d343309f796e8aa57fc8eb2ac3c0a89ab915a71 9f7a57e95f170b863a21b50ee201aa73b9dea081780f8d379ee7ac99df75f189 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_6cea3b99-4a8f-55fb-b665-dde985a7964f.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: F1vaYmjb9mV2MexzoiEVucik+VhwFVbLxrEf7pXnWoe4hwbRbqbh/Qs7Wd8WPuZT7IGdQq8zfIg= x-amz-request-id: JAES9XV2NCG3MBJC Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 22:02:32 GMT ETag: "c4737f9179319239f1781bbb3c953cdd" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 14909`

	api.app.airdeck.co/player/notifyToDeckOwner	52.10.103.104	204 No Content	0 B
URL HTTP/2 api.app.airdeck.co/player/notifyToDeckOwner IP 52.10.103.104:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /player/notifyToDeckOwner HTTP/1.1 Host: api.app.airdeck.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: ad_client_version,ad_user_tz,authorization,content-type Referer: https://app.airdeck.co/ Origin: https://app.airdeck.co Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 204 No Content date: Wed, 01 Feb 2023 16:05:11 GMT set-cookie: AWSALB=0eqHYj6rY1qLaJ3mh0NfYUYZCheFGSbBcbwE7jEKVpsNXLvnLJ8aBMOvlN8UDnkdOijKulljadkFXkLkxOUD4ZnYmkeE+Iwl17bvxuXBvfdXOfYxDcSMCSTF6NMn; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/ AWSALBCORS=0eqHYj6rY1qLaJ3mh0NfYUYZCheFGSbBcbwE7jEKVpsNXLvnLJ8aBMOvlN8UDnkdOijKulljadkFXkLkxOUD4ZnYmkeE+Iwl17bvxuXBvfdXOfYxDcSMCSTF6NMn; Expires=Wed, 08 Feb 2023 16:05:11 GMT; Path=/; SameSite=None; Secure access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: ad_client_version,ad_user_tz,authorization,content-type X-Firefox-Spdy: h2

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_7cd3b1ad-a01e-5dd5-aea9-568f55100864.jpg	52.218.234.233	200 OK	15 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_7cd3b1ad-a01e-5dd5-aea9-568f55100864.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 15 kB (14697 bytes) Hash 9cecffef91c456921fd603b65c0e1280 a846f33c903c6c669ff6867e5cd83438f747b9bb e4af8259d9db09afbbd2f2a313982f4da2d0c6dfbca9fbdf7aa218a4fd4625a5 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_7cd3b1ad-a01e-5dd5-aea9-568f55100864.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: PZFmMzk32wauwFBCOVjQojY5u7KCUxJNuhT1BVbKaQGpjV+NYsPUr2DE2k2U1EPKSgZYhGhzaXs= x-amz-request-id: JAEZ4A2SVZN7D4NQ Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 22:02:50 GMT ETag: "9cecffef91c456921fd603b65c0e1280" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 14697`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_a5398d89-cdba-5b45-a030-d414fb117f6f.jpg	52.218.234.233	200 OK	24 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_a5398d89-cdba-5b45-a030-d414fb117f6f.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 24 kB (23990 bytes) Hash 0eadb5e753bb3658f2f2ef4d0c66a1af 61c3b28766f320e817237106dcc60cbe292c7aa8 b1c17e9a500b01e2d932a09496a0d978eb66f11bd10cc70804365b60145b52f3 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_a5398d89-cdba-5b45-a030-d414fb117f6f.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: pnu81XD0SCTuNVvNRTbJ461GSXr9HG4NjyC0iqLd121zhRdaEPRlVW5o9Xw96YhCcy+pP2dxPGM= x-amz-request-id: VD9VE3C7BT7TABP8 Date: Wed, 01 Feb 2023 16:05:13 GMT Last-Modified: Mon, 05 Dec 2022 22:52:30 GMT ETag: "0eadb5e753bb3658f2f2ef4d0c66a1af" x-amz-server-side-encryption: AES256 Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 23990`

	find.userpilot.io/v1/lookups/71cu87x9	104.18.17.155	200 OK	136 B
URL HTTP/2 find.userpilot.io/v1/lookups/71cu87x9 IP 104.18.17.155:0 ASN #13335 CLOUDFLARENET File type data Size 136 B (136 bytes) Hash 7f915a5278cdb8e62a1bf84729864c62 815e979ae403be117c824c68c3e33bec9a481b6a 3538d146de791530178d8b822e6af9b03ac464b327f423987392e59caf9873ec HTTP Headers `GET /v1/lookups/71cu87x9 HTTP/1.1 Host: find.userpilot.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:11 GMT content-type: application/json; charset=utf-8 cf-ray: 792bed568d05b4f1-OSL access-control-allow-origin: * cache-control: public, max-age=14400 last-modified: Wed, 01 Feb 2023 11:47:09 GMT strict-transport-security: max-age=15552000; includeSubDomains; preload vary: Accept-Encoding cf-cache-status: EXPIRED access-control-allow-credentials: true access-control-expose-headers: cf-apo-via: origin,host x-cache: Hit from findex x-content-type-options: nosniff x-ratelimit-limit: 60000 x-ratelimit-remaining: 59999 x-ratelimit-reset: 1675267560000 x-request-id: Fz--7QX_BNnX8G8AKc0C server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_ae1836b6-a19a-52cf-95be-6f445f654d64.jpg	52.218.234.233	200 OK	25 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_ae1836b6-a19a-52cf-95be-6f445f654d64.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 25 kB (25113 bytes) Hash 119e9c642eb9caad3b33c3aff110705a 300b9db757d626ba9f7f9e87e6e220ff6bc4e0fa 5dcda898877d6d1fa65064735f9492759ae1e098dc4b48f5451f422c5033cf0e HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_ae1836b6-a19a-52cf-95be-6f445f654d64.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: Wn5lfzehfvxjI/EYkick++PgGIU6sKzNkKdCQMp2AFCYoEVn5wspu0u7DbvC5tPQOX0vx2hCuZc= x-amz-request-id: VD9T5V6DFFGZGBM1 Date: Wed, 01 Feb 2023 16:05:13 GMT Last-Modified: Mon, 05 Dec 2022 22:53:03 GMT ETag: "119e9c642eb9caad3b33c3aff110705a" x-amz-server-side-encryption: AES256 Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 25113`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_9b123ccb-9b81-5847-a889-fa2384e08bba.jpg	52.218.234.233	200 OK	26 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_9b123ccb-9b81-5847-a889-fa2384e08bba.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 26 kB (25844 bytes) Hash b5843077610f8e6da4a77efe9aafd322 79a885eaf502a7a7837c0574cb9e241a2e99e428 3781a30a6edd5e3f51266e2732fe8c3fd0f5260ecb42e9b376d4ef514daeb325 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_9b123ccb-9b81-5847-a889-fa2384e08bba.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: W2+VVjnp9RfeCoh05EC/fRYTpERMLe136NdYU6LxPdQ/PUAtCEb2IXd0XkyofN0pNl1IEGwqWPE= x-amz-request-id: VD9NKCV36RRQQJAN Date: Wed, 01 Feb 2023 16:05:13 GMT Last-Modified: Wed, 12 Oct 2022 22:03:58 GMT ETag: "b5843077610f8e6da4a77efe9aafd322" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 25844`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_6a983458-228c-540d-980e-132906f27023.jpg	52.218.234.233	200 OK	26 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_6a983458-228c-540d-980e-132906f27023.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 26 kB (26160 bytes) Hash 846974b8364500f0067c961f20f047d2 2457f43690e10f558a50c8bd85569b0854747ff9 13ede54e033124fee6b2731528fbf3bba479604c1326abe32f157bda5e9c2cee HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_6a983458-228c-540d-980e-132906f27023.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: 8rjMWfFu5pGiD5BpTYjB/tASCFKv0+q8L5uEvUKl+A7nQb/YIulA2/K/jMVl0TEdPAGIQ4WEjf0= x-amz-request-id: VD9R7TZ13TTGKQ67 Date: Wed, 01 Feb 2023 16:05:13 GMT Last-Modified: Wed, 12 Oct 2022 22:04:21 GMT ETag: "846974b8364500f0067c961f20f047d2" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 26160`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_d5da72d5-97d4-5de2-bddc-d7be8bf5b015.jpg	52.218.234.233	200 OK	34 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_d5da72d5-97d4-5de2-bddc-d7be8bf5b015.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 34 kB (33759 bytes) Hash 1dd9bf73ab487cd090318c56d0816937 9962782bd72ad632b98bf0c005e9c940f2c6713d 64a438b8b801a622530161e62de394f148612f6b2f086e25d47f8fcd5974d0c0 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_d5da72d5-97d4-5de2-bddc-d7be8bf5b015.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: DoRItkLACmnOk1tkcKWA5cVAujd/CDPIU7hGGSedLeLZbmndf93VRY+5CsBkZEFun8sLRSVP2Gc= x-amz-request-id: VD9JXX17087E72VS Date: Wed, 01 Feb 2023 16:05:13 GMT Last-Modified: Wed, 12 Oct 2022 22:04:43 GMT ETag: "1dd9bf73ab487cd090318c56d0816937" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 33759`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/c312ef1f-5105-5d55-9f1a-265a3c9830f4.jpg	52.218.234.233	200 OK	172 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/c312ef1f-5105-5d55-9f1a-265a3c9830f4.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data Size 172 kB (171643 bytes) Hash dd201c6694690c9299c6d4d231094e89 c17d52bb9bfab746e71cd41b2f57d218f9616b11 a69c244d6d07a0d203848245ca265d63d363c6c40490bd6c8cfdd459728aa0e3 HTTP Headers `GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/c312ef1f-5105-5d55-9f1a-265a3c9830f4.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK x-amz-id-2: c++XF6ohll+hH9pfSjo3Mkd8T4XLzd0cF2hv65Hem8cphnSCSQS2nO0dJ2Lz84kWL4cctgz2XcY= x-amz-request-id: JAEZ5PGFMY4G2249 Date: Wed, 01 Feb 2023 16:05:12 GMT Last-Modified: Wed, 12 Oct 2022 21:59:35 GMT ETag: "dd201c6694690c9299c6d4d231094e89" Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 171643`

	ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_5351a4c0-54ef-5334-9ab9-99e62e17cdba.jpg	52.218.234.233	200 OK	21 kB
URL HTTP/1.1 ad-prod-slides.s3.us-west-2.amazonaws.com/a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_5351a4c0-54ef-5334-9ab9-99e62e17cdba.jpg IP 52.218.234.233:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 600x338, components 3\012- data Size 21 kB (20751 bytes) Hash e0be858c8757dbb55aba9f94c875d187 214c9f5007f03ac7e0238403f3f8418283c19f94 4cc18a3960018fc0dcc9c551ed7f210c0638aafafe61a9dc816107d43bcf3544 HTTP Headers GET /a2fe0f14-c639-5fbe-b2d5-7aadaa1b884d/eedf78c8-e674-5aee-bb74-5552bdd1a46d/thumb_5351a4c0-54ef-5334-9ab9-99e62e17cdba.jpg HTTP/1.1 Host: ad-prod-slides.s3.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amz-id-2: j4F+LDRrgoUSH0qV7nmMVT9wP7X8Dt5NAfi7cM+D+FpZt9dubX0cBimKS7HSO0xpaFcSaKdsZqQ= x-amz-request-id: VD9RBEB0H50PX3ST Date: Wed, 01 Feb 2023 16:05:13 GMT Last-Modified: Wed, 12 Oct 2022 22:05:01 GMT ETag: "e0be858c8757dbb55aba9f94c875d187" Cache-Control: max-age=31536000 Accept-Ranges: bytes Content-Type: application/octet-stream Server: AmazonS3 Content-Length: 20751`

	js.chargebee.com/v2/134-697e2b9b5522126d7fbc.js	54.230.111.93	200 OK	0 B
URL HTTP/2 js.chargebee.com/v2/134-697e2b9b5522126d7fbc.js IP 54.230.111.93:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/134-697e2b9b5522126d7fbc.js HTTP/1.1 Host: js.chargebee.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/x-javascript last-modified: Wed, 01 Feb 2023 07:59:41 GMT x-amz-version-id: VE8EwXVRkwevAhHmcdt3naRm5K1OKWMm server: AmazonS3 strict-transport-security: max-age=300; includeSubdomains; preload content-encoding: gzip date: Wed, 01 Feb 2023 16:03:18 GMT cache-control: max-age=300,public etag: W/"872342286bbf16863c2464ec8be9734c" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: NzzVjbFsQiiVQfl_ErH-cMc6f2zfLesPnNVrvgrYb9wQmOrZfAfudg== age: 107 X-Firefox-Spdy: h2

	js.userpilot.io/sdk/version/v0/app.js	104.18.16.155	200 OK	0 B
URL HTTP/2 js.userpilot.io/sdk/version/v0/app.js IP 104.18.16.155:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /sdk/version/v0/app.js HTTP/1.1 Host: js.userpilot.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: text/javascript cache-control: max-age=28800 cf-bgj: minify etag: W/"b33ca7f5d0c4f0de5590065f19b941ae" last-modified: Wed, 01 Feb 2023 14:41:04 GMT x-amz-id-2: G3m0hIhSUs8iVepz6kqSIqdFZ/O973Cr6JHSVVEy/7d6koyNdWtZGebj6MCEVtoaqVcyiZJzuRM= x-amz-request-id: KCPMWM6D85NDNKK3 x-amz-server-side-encryption: AES256 cf-cache-status: HIT age: 5039 vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 792bed530dc41bfe-OSL content-encoding: gzip X-Firefox-Spdy: h2

	js.userpilot.io/sdk/latest.js	104.18.16.155	200 OK	0 B
URL HTTP/2 js.userpilot.io/sdk/latest.js IP 104.18.16.155:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /sdk/latest.js HTTP/1.1 Host: js.userpilot.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:10 GMT content-type: text/javascript cache-control: max-age=120 cf-bgj: minify etag: W/"9cd5fcc90d85f611e262d6a7da71ff44" last-modified: Wed, 01 Feb 2023 14:41:06 GMT x-amz-id-2: ZFlJ0tdpK07KoFpzqQmXTMUsoHwB2vc+XchHjf6IOkCMwK35zh9wJrC6tY0OI4NOFxT8boy2Vio= x-amz-request-id: S2SKABB4TCYK4A01 x-amz-server-side-encryption: AES256 cf-cache-status: HIT age: 17 vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 792bed52ed8f1bfe-OSL content-encoding: gzip X-Firefox-Spdy: h2

	cdn.plyr.io/3.7.2/plyr.svg	104.27.194.88	200 OK	0 B
URL HTTP/2 cdn.plyr.io/3.7.2/plyr.svg IP 104.27.194.88:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /3.7.2/plyr.svg HTTP/1.1 Host: cdn.plyr.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:11 GMT content-type: image/svg+xml x-amz-id-2: 6rNHSBAM9IEpmSokPOal2lzOLzJj/uo2QHMTHg9+g134VayXJoihyo3kBIjoo+8P8XpNK9ccLMY= x-amz-request-id: X98KMTKNBTRH1ABW last-modified: Wed, 20 Apr 2022 10:14:57 GMT etag: W/"3a727a9b7eef825081d78cc6e48aaadf" cache-control: max-age=31536000, immutable via: 1.1 varnish, 1.1 varnish x-served-by: cache-iad-kjyo7100037-IAD, cache-yyz4526-YYZ x-cache: HIT, HIT x-cache-hits: 61, 14105 x-timer: S1675260074.386938,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5q9%2BV5BL3lbxxrziPve24hlpCHdLUyTKTjBegyMTrlDsAqSoJv8IFgPphtrYqhgtePCCEL2SEGWpCjEy2CU6BgAOIpo%2F5xlpSiH0Wxh92uncSkxaf8nxDKvJ2T4Q"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 792bed59a902b506-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdn.plyr.io/3.7.2/plyr.svg	104.27.194.88	200 OK	0 B
URL HTTP/2 cdn.plyr.io/3.7.2/plyr.svg IP 104.27.194.88:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /3.7.2/plyr.svg HTTP/1.1 Host: cdn.plyr.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Wed, 01 Feb 2023 16:05:11 GMT content-type: image/svg+xml x-amz-id-2: 6rNHSBAM9IEpmSokPOal2lzOLzJj/uo2QHMTHg9+g134VayXJoihyo3kBIjoo+8P8XpNK9ccLMY= x-amz-request-id: X98KMTKNBTRH1ABW last-modified: Wed, 20 Apr 2022 10:14:57 GMT etag: W/"3a727a9b7eef825081d78cc6e48aaadf" cache-control: max-age=31536000, immutable via: 1.1 varnish, 1.1 varnish x-served-by: cache-iad-kjyo7100037-IAD, cache-yyz4526-YYZ x-cache: HIT, HIT x-cache-hits: 61, 14105 x-timer: S1675260074.386938,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept cf-cache-status: HIT age: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AG8gZbF8YkUiTqJSgd7EcI0K44%2FH0Sj0qWOvBxhiNWA7S%2BrF3fKb7D8D%2FZbMAUu%2B6KBtBry2v6S6tQCXNmpnD%2BoqKyKyzXgnx9QKSW1Lka9QIWNPtwp%2FhDkxPUbk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 792bed59d95eb506-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ucarecdn.com/153ea703-0dcb-47ab-97b7-931e1322871a/	95.101.10.43	206 Partial Content	0 B
URL HTTP/2 ucarecdn.com/153ea703-0dcb-47ab-97b7-931e1322871a/ IP 95.101.10.43:0 ASN #20940 Akamai International B.V. File type Size 0 B (0 bytes) Hash HTTP Headers `GET /153ea703-0dcb-47ab-97b7-931e1322871a/ HTTP/1.1 Host: ucarecdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: audio/webm,audio/ogg,audio/wav,audio/;q=0.9,application/ogg;q=0.7,video/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Origin: https://app.airdeck.co Connection: keep-alive Referer: https://app.airdeck.co/ Sec-Fetch-Dest: audio Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 206 Partial Content content-type: audio/mpeg accept-ranges: bytes access-control-allow-methods: HEAD, GET, OPTIONS access-control-allow-origin: * content-disposition: inline; filename=SlyProd4116260781_recorded.mp3 etag: "a23f7e3e118d701392c147b279ff4396" last-modified: Wed, 12 Oct 2022 23:57:38 GMT server: nginx x-amz-storage-class: INTELLIGENT_TIERING cache-control: public, max-age=31473165 date: Wed, 01 Feb 2023 16:05:11 GMT content-range: bytes 0-589004/589005 content-length: 589005 strict-transport-security: max-age=2628000 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML